offensive-terraform / terraform-aws-cross-account-persistence
Offensive Terraform module which creates an IAM role with trust relationship with attacker's AWS account and attaches managed IAM Policy to an IAM role.
☆12Updated 4 years ago
Related projects: ⓘ
- ☆28Updated 4 years ago
- Updated incident response generator for training classes☆41Updated 3 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago
- Assess certain AWS network configurations☆11Updated 6 years ago
- Offensive Terraform Website☆44Updated 3 years ago
- Visualize your Terraform files☆34Updated 4 years ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Utilities for programmatic analysis of Cartography data.☆32Updated last year
- Some python scripts I wrote that help with various specialized AWS security things☆10Updated 4 years ago
- This command line tool counts the number of resources in different categories across Amazon regions.☆56Updated 4 years ago
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆28Updated 5 years ago
- Automation of VPC Traffic Mirror Sessions in AWS☆34Updated 2 years ago
- AWS Incident Response Kit (AIRK) - AWS Incident Response☆21Updated 4 years ago
- CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…☆43Updated last year
- Tools for AWS forensics☆64Updated 8 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…☆19Updated 2 weeks ago
- GCP CSPM using Google Sheets☆33Updated 3 months ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆58Updated 2 years ago
- Lightspin AWS IAM Vulnerability Scanner☆96Updated 3 years ago
- ☆18Updated this week
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆37Updated 4 years ago
- Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…☆17Updated 4 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆51Updated 4 years ago
- Vulnerable Kustomize Kubernetes templates for training and education☆47Updated 2 years ago
- Slides, Cheatsheet and Resources from our Blackhat EU talk☆38Updated 4 years ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆77Updated 3 months ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago