narenaryan / whispr
A multi-vault secret injection tool for safely injecting secrets into app environment
☆97Updated this week
Related projects ⓘ
Alternatives and complementary repositories for whispr
- AWS honey token manager☆84Updated 3 months ago
- Open-source best practices for protecting a secure, sensible cloud platform☆103Updated 3 weeks ago
- AWS Attack Path Management Tool - Walking on the Moon☆223Updated 3 weeks ago
- Generate datasets of cloud audit logs for common attacks☆184Updated 3 months ago
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated 10 months ago
- ☆147Updated last month
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆157Updated 6 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆70Updated 5 months ago
- ☆47Updated last year
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆44Updated this week
- ☆109Updated this week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆57Updated last year
- ☆42Updated 3 weeks ago
- Kickstart and manage your AWS Organization via Terraform☆71Updated this week
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated last year
- A Golang program to rotate AWS & GCP account keys☆65Updated 2 months ago
- cloudgrep is grep for cloud storage☆319Updated this week
- A tool to uncover undocumented APIs from the AWS Console.☆83Updated this week
- A collection of documented and undocumented AWS API models☆27Updated last week
- Compares and analyzes GCP IAM roles.☆76Updated 5 months ago
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆174Updated 4 months ago
- ☆24Updated 2 weeks ago
- Tool for obfuscating and deobfuscating data.☆64Updated 8 months ago
- Crowdsourced list of sensitive IAM Actions☆139Updated 3 weeks ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆140Updated 5 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆115Updated last month
- find dangling domains in a multi cloud environment☆135Updated 6 months ago
- Safer AWS SCP deployments via real-time monitoring☆44Updated last year
- ☆115Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆79Updated this week