nccgroup / s3_objects_checkLinks
Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
☆77Updated 3 years ago
Alternatives and similar repositories for s3_objects_check
Users that are interested in s3_objects_check are comparing it to the libraries listed below
Sorting:
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆111Updated 4 years ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆89Updated 2 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago
- Burp Extension for AWS Signing☆89Updated 6 months ago
- Route53/CloudFront Vulnerability Assessment Utility☆86Updated last year
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆93Updated last year
- A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…☆19Updated 4 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- Pivot into private VPC networks using a VPN connection☆43Updated 5 years ago
- ☆57Updated 2 years ago
- A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials☆10Updated 4 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- AWS SSO serverless phishing API.☆32Updated 4 years ago
- Assorted tools for security-related task for git repositories☆59Updated 3 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- Burp with Friends☆103Updated 2 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.☆78Updated 4 years ago
- Visualize your Terraform files☆34Updated 4 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- Updated incident response generator for training classes☆44Updated 4 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆40Updated 4 years ago
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.☆82Updated 3 years ago
- ☆137Updated 2 years ago
- ☆127Updated last year
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆86Updated 4 months ago