This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
☆63Jan 25, 2025Updated last year
Alternatives and similar repositories for terraform-provider-statefile-rce
Users that are interested in terraform-provider-statefile-rce are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆40Aug 2, 2024Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- Expand IAM Actions with Wildcards☆34Updated this week
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆102Updated this week
- ☆36Apr 29, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆87Apr 7, 2026Updated 3 weeks ago
- A demo repo for some unusual and user-unfriendly behaviour with AWS environment variable encryption☆11Oct 30, 2021Updated 4 years ago
- Firebase Misconfiguration Detection Toolkit - To be presented at Blackhat EU Arsenal☆45Nov 6, 2025Updated 5 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- ☆43Nov 13, 2025Updated 5 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆110Feb 16, 2024Updated 2 years ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆143Jan 2, 2025Updated last year
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆41Aug 29, 2024Updated last year
- Pentester-focused Docker registry tool to enumerate and pull images☆37Oct 19, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Simple web app to track OWASP WSTG security testing progress☆28Sep 12, 2025Updated 7 months ago
- AWS honey token manager☆90Aug 1, 2024Updated last year
- ☆193Apr 16, 2025Updated last year
- A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!☆24Apr 15, 2026Updated 2 weeks ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆41Jan 25, 2026Updated 3 months ago
- AWS Trustline: Check external access on your AWS account☆129Feb 27, 2026Updated 2 months ago
- ☆38Jun 9, 2021Updated 4 years ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- Hijack a slack bot to phish your way in☆57Jul 17, 2025Updated 9 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Halberd : Multi-Cloud Agentic Attack Tool☆337Apr 8, 2026Updated 3 weeks ago
- A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…☆11Updated this week
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆93Mar 17, 2025Updated last year
- Unauthenticated enumeration of AWS IAM Roles.☆26Apr 18, 2026Updated last week
- ☆16Jan 9, 2025Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆292May 16, 2025Updated 11 months ago
- ☆54Oct 27, 2024Updated last year
- Used to check Github actions logs for secrets - specifically tj-actions and reviewdog☆22Mar 18, 2025Updated last year
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆265Apr 22, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Local CLI tool for browser extension risk analysis☆29Apr 11, 2025Updated last year
- ☆231Mar 27, 2026Updated last month
- A tool for quickly evaluating IAM permissions in AWS.☆77May 27, 2024Updated last year
- A fork of the Go language with some tweaks☆56Jan 29, 2025Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆34Feb 15, 2026Updated 2 months ago
- Security tool against dependency typosquatting attacks☆55Apr 21, 2026Updated last week
- Tricard - Malware Sandbox Fingerprinting☆23Dec 11, 2023Updated 2 years ago