offensive-terraform / terraform-aws-cross-account-persistence

Related projects: ⓘ

• allisonis / gcp-iam-sentinel-examples
  ☆28Updated 4 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆61Updated 5 years ago
• disruptops / assess_network
  Assess certain AWS network configurations
  ☆11Updated 6 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 3 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆41Updated this week
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆32Updated last year
• kmcquade / aws-security-scripts
  Some python scripts I wrote that help with various specialized AWS security things
  ☆10Updated 4 years ago
• disruptops / resource-counter
  This command line tool counts the number of resources in different categories across Amazon regions.
  ☆56Updated 4 years ago
• jchrisfarris / detect-credential-compromise
  Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
  ☆28Updated 5 years ago
• 3CORESec / AWS-AutoMirror
  Automation of VPC Traffic Mirror Sessions in AWS
  ☆34Updated 2 years ago
• prolsen / aws_responder
  AWS Incident Response Kit (AIRK) - AWS Incident Response
  ☆21Updated 4 years ago
• bridgecrewio / cdkgoat
  CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…
  ☆43Updated last year
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆64Updated 8 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆84Updated 5 years ago
• twilio-labs / gordon
  Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…
  ☆19Updated 2 weeks ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆33Updated 3 months ago
• CloudWanderer-io / PolicyGlass
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆58Updated 2 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 3 years ago
• cedowens / aws_key_triage_tool
  ☆18Updated this week
• ThreatResponse / mad-king
  Proof of Concept Zappa Based AWS Persistence and Attack Platform
  ☆37Updated 4 years ago
• darkbitio / aws-s3-dlp
  Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…
  ☆17Updated 4 years ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆51Updated 4 years ago
• bridgecrewio / kustomizegoat
  Vulnerable Kustomize Kubernetes templates for training and education
  ☆47Updated 2 years ago
• heroku / bheu19-attacking-cloud-builds
  Slides, Cheatsheet and Resources from our Blackhat EU talk
  ☆38Updated 4 years ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆77Updated 3 months ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago