offensive-actions / azure-storage-reverse-shell
This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
☆36Updated last month
Related projects ⓘ
Alternatives and complementary repositories for azure-storage-reverse-shell
- Collection of Docker honeypot logs from 2021 - 2024☆35Updated last month
- ☆40Updated 5 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆39Updated 3 months ago
- A GitHub Actions Supply Chain CTF / Goat☆17Updated 5 months ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆92Updated 11 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆39Updated 11 months ago
- ☆28Updated 3 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆27Updated last month
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆104Updated 2 months ago
- ☆31Updated last week
- ☆55Updated last year
- ☆77Updated 7 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆46Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆45Updated 2 months ago
- ☆58Updated last year
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆100Updated 9 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆87Updated last week
- Determine privileges from cloud credentials via brute-force testing.☆64Updated 2 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …☆70Updated last month
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆71Updated 9 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆42Updated last month
- boostsecurityio/lotp☆101Updated 7 months ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 5 months ago
- A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.☆40Updated 2 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated last year
- ☆40Updated 2 months ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆17Updated 3 months ago
- Offensive Kubernetes Threat Matrix -- kubenomicon.com☆28Updated 2 weeks ago