Alternatives and similar repositories for iaas_permission_mining

Users that are interested in iaas_permission_mining are comparing it to the libraries listed below

• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆76Updated 3 years ago
• mburrough / pentestingazureapps
  Script samples from the book Pentesting Azure Applications (2018, No Starch Press)
  ☆87Updated 6 years ago
• SygniaLabs / security-cloud-scout
  ☆137Updated 2 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆53Updated 2 years ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated 2 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆80Updated 5 years ago
• cado-security / CloudAndContainerCompromiseSimulator
  Simulates a compromise in a cloud and container environment
  ☆32Updated 5 months ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated 2 weeks ago
• talmaor / AzureADLateralMovement
  Lateral Movement graph for Azure Active Directory
  ☆122Updated 2 years ago
• jordanpotti / guardduty-opsec
  Opsec considerations for each AWS GuardDuty finding type.
  ☆22Updated 4 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 9 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆36Updated 2 months ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• dxa4481 / gcploit
  These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok
  ☆173Updated 3 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆15Updated 2 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆74Updated 3 years ago
• ReversecLabs / cloud-wiki
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆51Updated 6 months ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆48Updated 7 years ago
• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆135Updated 4 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 4 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆28Updated 2 years ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆81Updated last year
• mattrotlevi / lava
  Microsoft Azure Exploitation Framework
  ☆57Updated 3 years ago
• NicholasSpringer / thunder-ctf
  GCP cloud security CTF
  ☆44Updated last month
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆116Updated last year
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆50Updated last year