Alternatives and similar repositories for ingress-nightmare

Users that are interested in ingress-nightmare are comparing it to the libraries listed below

• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆29Updated 2 years ago
• Antonlovesdnb / DockerDetectionNotes
  Some of my rough notes for Docker threat detection
  ☆47Updated last year
• sandumjacob / IngressNightmare-POCs
  Worlds First Public POC for CVE-2025-1974
  ☆89Updated 2 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated last year
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆47Updated last month
• NHAS / egressinator
  Find what egress ports are allowed
  ☆42Updated 2 years ago
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆43Updated 8 months ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Updated 9 months ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 2 weeks ago
• hac01 / gcp-iam-brute
  ☆47Updated 11 months ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• NicholasSpringer / thunder-ctf
  GCP cloud security CTF
  ☆45Updated last month
• AnubisSec / GroovyWaiter
  ☆17Updated 3 years ago
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆36Updated last month
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆27Updated 8 months ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆27Updated 2 months ago
• lightspin-tech / lightspin-2022-top-7-attack-paths
  Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …
  ☆40Updated 2 years ago
• adanalvarez / TrailGuard
  Tool to check the CloudTrail configuration and the services where trails are sent, to detect potential attacks to CloudTrail logging.
  ☆13Updated last year
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆73Updated last year
• carlospolop / Cloudtrail2IAM
  ☆21Updated 2 years ago
• tenable / hidden-services-revealer
  ☆36Updated 10 months ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated last year
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆80Updated last year
• jtesta / k8s_spoofilizer
  Creates Kubernetes Golden Tickets through ServiceAccount token forging and user certificate forging.
  ☆48Updated 3 months ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• synacktiv / gh-hijack-runner
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆23Updated 7 months ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 3 months ago
• SirAppSec / bsides-shadow-api
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Updated 10 months ago
• ethiack / CVE-2023-29007
  PoC repository for CVE-2023-29007
  ☆33Updated 2 years ago