offensive-actions/terraform-provider-statefile-rce external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

offensive-actions/terraform-provider-statefile-rce

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/offensive-actions/terraform-provider-statefile-rce)

Close

offensive-actions / terraform-provider-statefile-rceView on GitHubMore

• External links
• Readme badge

This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.

☆64Jan 25, 2025Updated last year

Alternatives and similar repositories for terraform-provider-statefile-rce

Users that are interested in terraform-provider-statefile-rce are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆35Updated this week
• cloud-copilot / iam-simulate

  View on GitHub
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆103Updated this week
• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆37Apr 29, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• huntresslabs / rogueapps

  View on GitHub
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆87Apr 7, 2026Updated 2 months ago
• JA3G3R / agneyastra

  View on GitHub
  Firebase Misconfiguration Detection Toolkit - To be presented at Blackhat EU Arsenal
  ☆48Apr 27, 2026Updated 2 months ago
• semgr8ns / semgr8s

  View on GitHub
  Semgrep-based Policy Controller for Kubernetes
  ☆47Apr 4, 2025Updated last year
• bilals12 / clusterfuck

  View on GitHub
  ☆42Nov 13, 2025Updated 7 months ago
• padok-team / cognito-scanner

  View on GitHub
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆112Feb 16, 2024Updated 2 years ago
• orcasecurity-research / kte

  View on GitHub
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆43Aug 29, 2024Updated last year
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆146Jan 2, 2025Updated last year
• antitree / go-pillage-registries

  View on GitHub
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆40Oct 19, 2025Updated 8 months ago
• adanalvarez / owasp-wstg-tracker

  View on GitHub
  Simple web app to track OWASP WSTG security testing progress
  ☆28Sep 12, 2025Updated 9 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆90Aug 1, 2024Updated last year
• jstawinski / GitHub-Actions-Attack-Diagram

  View on GitHub
  ☆192Apr 16, 2025Updated last year
• bwireman / go-over

  View on GitHub
  A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!
  ☆26Jun 21, 2026Updated last week
• AdnaneKhan / ActionsTOCTOU

  View on GitHub
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆42Jan 25, 2026Updated 5 months ago
• zoph-io / aws-trustline

  View on GitHub
  Trustline: Check external access on your AWS account
  ☆128Jun 20, 2026Updated last week
• SEU-ProactiveSecurity-Group / LLM-PD

  View on GitHub
  Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"
  ☆16Apr 10, 2025Updated last year
• adelapazborrero / slack_jack

  View on GitHub
  Hijack a slack bot to phish your way in
  ☆57Jul 17, 2025Updated 11 months ago
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆39Jun 9, 2021Updated 5 years ago
• vectra-ai-research / Halberd

  View on GitHub
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆338Apr 8, 2026Updated 2 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• mark-adams / gcp-ip-list

  View on GitHub
  A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…
  ☆11Apr 28, 2026Updated 2 months ago
• blackberry / Falco-bypasses

  View on GitHub
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆90Jan 28, 2024Updated 2 years ago
• NetSPI / gcpwn

  View on GitHub
  Pentesting framework for GCP that enumerates/downloads data that feeds into a BloodHound Opengraph model. Includes credential management,…
  ☆301Updated this week
• RhinoSecurityLabs / dsnap

  View on GitHub
  Utility for downloading and mounting EBS snapshots using the EBS Direct API's
  ☆94Mar 17, 2025Updated last year
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆28Apr 18, 2026Updated 2 months ago
• redteamronin / EmbedInHTML

  View on GitHub
  ☆16Jan 9, 2025Updated last year
• Aqua-Nautilus / TrailShark

  View on GitHub
  ☆53Oct 27, 2024Updated last year
• latiotech / github-actions-log-checker

  View on GitHub
  Used to check Github actions logs for secrets - specifically tj-actions and reviewdog
  ☆23Mar 18, 2025Updated last year
• rileydakota / crx-analyzer

  View on GitHub
  Local CLI tool for browser extension risk analysis
  ☆30Apr 11, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• ReversecLabs / IAMSpy

  View on GitHub
  ☆232Jun 10, 2026Updated 2 weeks ago
• DataDog / supply-chain-firewall

  View on GitHub
  Supply Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆375Updated this week
• Fennerr / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆77May 27, 2024Updated 2 years ago
• almounah / evil-go

  View on GitHub
  A fork of the Go language with some tweaks
  ☆55Jan 29, 2025Updated last year
• praetorian-inc / konstellation

  View on GitHub
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆35May 5, 2026Updated last month
• elementsinteractive / twyn

  View on GitHub
  Security tool against dependency typosquatting attacks
  ☆55Updated this week
• therealunicornsecurity / tricard

  View on GitHub
  Tricard - Malware Sandbox Fingerprinting
  ☆23Dec 11, 2023Updated 2 years ago