offensive-actions/terraform-provider-statefile-rce external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

offensive-actions/terraform-provider-statefile-rce

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/offensive-actions/terraform-provider-statefile-rce)

Close

offensive-actions / terraform-provider-statefile-rceView on GitHubMore

• External links
• Readme badge

This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.

☆63Jan 25, 2025Updated last year

Alternatives and similar repositories for terraform-provider-statefile-rce

Users that are interested in terraform-provider-statefile-rce are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• tenable / hidden-services-revealer

  View on GitHub
  ☆39Aug 2, 2024Updated last year
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆35May 10, 2026Updated last week
• cloud-copilot / iam-simulate

  View on GitHub
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆102May 10, 2026Updated last week
• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆36Apr 29, 2025Updated last year
• huntresslabs / rogueapps

  View on GitHub
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆86Apr 7, 2026Updated last month
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• JA3G3R / agneyastra

  View on GitHub
  Firebase Misconfiguration Detection Toolkit - To be presented at Blackhat EU Arsenal
  ☆45Apr 27, 2026Updated 3 weeks ago
• semgr8ns / semgr8s

  View on GitHub
  Semgrep-based Policy Controller for Kubernetes
  ☆47Apr 4, 2025Updated last year
• bilals12 / clusterfuck

  View on GitHub
  ☆42Nov 13, 2025Updated 6 months ago
• padok-team / cognito-scanner

  View on GitHub
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆110Feb 16, 2024Updated 2 years ago
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Jan 2, 2025Updated last year
• orcasecurity-research / kte

  View on GitHub
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆42Aug 29, 2024Updated last year
• antitree / go-pillage-registries

  View on GitHub
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆39Oct 19, 2025Updated 7 months ago
• adanalvarez / owasp-wstg-tracker

  View on GitHub
  Simple web app to track OWASP WSTG security testing progress
  ☆28Sep 12, 2025Updated 8 months ago
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆90Aug 1, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• jstawinski / GitHub-Actions-Attack-Diagram

  View on GitHub
  ☆193Apr 16, 2025Updated last year
• bwireman / go-over

  View on GitHub
  A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!
  ☆24Apr 26, 2026Updated 3 weeks ago
• AdnaneKhan / ActionsTOCTOU

  View on GitHub
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆41Jan 25, 2026Updated 3 months ago
• zoph-io / aws-trustline

  View on GitHub
  AWS Trustline: Check external access on your AWS account
  ☆128Feb 27, 2026Updated 2 months ago
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆38Jun 9, 2021Updated 4 years ago
• SEU-ProactiveSecurity-Group / LLM-PD

  View on GitHub
  Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"
  ☆16Apr 10, 2025Updated last year
• adelapazborrero / slack_jack

  View on GitHub
  Hijack a slack bot to phish your way in
  ☆57Jul 17, 2025Updated 10 months ago
• vectra-ai-research / Halberd

  View on GitHub
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆336Apr 8, 2026Updated last month
• mark-adams / gcp-ip-list

  View on GitHub
  A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…
  ☆11Apr 28, 2026Updated 3 weeks ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• blackberry / Falco-bypasses

  View on GitHub
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆89Jan 28, 2024Updated 2 years ago
• NetSPI / gcpwn

  View on GitHub
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆295May 9, 2026Updated last week
• RhinoSecurityLabs / dsnap

  View on GitHub
  Utility for downloading and mounting EBS snapshots using the EBS Direct API's
  ☆93Mar 17, 2025Updated last year
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆26Apr 18, 2026Updated last month
• redteamronin / EmbedInHTML

  View on GitHub
  ☆16Jan 9, 2025Updated last year
• Aqua-Nautilus / TrailShark

  View on GitHub
  ☆54Oct 27, 2024Updated last year
• latiotech / github-actions-log-checker

  View on GitHub
  Used to check Github actions logs for secrets - specifically tj-actions and reviewdog
  ☆23Mar 18, 2025Updated last year
• DataDog / supply-chain-firewall

  View on GitHub
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆283Apr 27, 2026Updated 3 weeks ago
• rileydakota / crx-analyzer

  View on GitHub
  Local CLI tool for browser extension risk analysis
  ☆29Apr 11, 2025Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• ReversecLabs / IAMSpy

  View on GitHub
  ☆231Mar 27, 2026Updated last month
• Fennerr / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆77May 27, 2024Updated last year
• almounah / evil-go

  View on GitHub
  A fork of the Go language with some tweaks
  ☆55Jan 29, 2025Updated last year
• praetorian-inc / konstellation

  View on GitHub
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆34May 5, 2026Updated 2 weeks ago
• elementsinteractive / twyn

  View on GitHub
  Security tool against dependency typosquatting attacks
  ☆56Updated this week
• therealunicornsecurity / tricard

  View on GitHub
  Tricard - Malware Sandbox Fingerprinting
  ☆23Dec 11, 2023Updated 2 years ago
• dievus / AWeSomeUserFinder

  View on GitHub
  AWS IAM Username Enumerator and Password Spraying Tool in Python3
  ☆89Dec 7, 2025Updated 5 months ago