offensive-terraform / offensive-terraform.github.io

Related projects ⓘ

Alternatives and complementary repositories for offensive-terraform.github.io

• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆51Updated 2 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆41Updated this week
• prolsen / aws_responder
  AWS Incident Response Kit (AIRK) - AWS Incident Response
  ☆21Updated 4 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆57Updated last year
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆40Updated last month
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆81Updated 3 years ago
• primeharbor / aws-fast-fixes
  Scripts to quickly fix security and compliance issues
  ☆25Updated 11 months ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated this week
• AirWalk-Digital / AWSXenos
  AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
  ☆61Updated 5 months ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 3 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆29Updated 3 years ago
• matthewdfuller / safer-scps
  Safer AWS SCP deployments via real-time monitoring
  ☆24Updated last year
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆62Updated 5 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• RhinoSecurityLabs / dsnap
  Utility for downloading and mounting EBS snapshots using the EBS Direct API's
  ☆73Updated last year
• tradichel / SecurityMetricsAutomation
  ☆37Updated 9 months ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆76Updated 5 months ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 3 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 3 years ago
• ovotech / cloud-key-rotator
  A Golang program to rotate AWS & GCP account keys
  ☆65Updated 2 months ago
• clearvector / lambda-spy
  ☆32Updated last year
• ekristen / libnuke
  Common Golang Packages for use by the Various Cloud Nuke Tools
  ☆28Updated this week
• KatTraxler / gcpdocs
  Repository to archive GCP Documentation for local use
  ☆13Updated last week
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆43Updated 10 months ago