Alternatives and similar repositories for git-secret-scanner:

Users that are interested in git-secret-scanner are comparing it to the libraries listed below

• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆45Updated last year
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆50Updated last month
• ANSSI-FR / OSAKA
  Outil de sécurité des architectures kubernetes avancées
  ☆46Updated 2 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆77Updated 2 weeks ago
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆77Updated 10 months ago
• padok-team / cognito-scanner
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆101Updated 11 months ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆35Updated 4 months ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆71Updated 11 months ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 4 months ago
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆169Updated last year
• lobuhi / awrbacs
  AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
  ☆38Updated 7 months ago
• Permiso-io-tools / SkyScalpel
  ☆30Updated 2 months ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆80Updated 11 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆60Updated last year
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆38Updated last year
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆186Updated last week
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆108Updated last month
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆66Updated last year
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆266Updated last month
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆45Updated 5 months ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆53Updated 5 months ago
• Qovery / iam-eks-user-mapper
  A tool to automatically give AWS IAM users access to your Kubernetes cluster.
  ☆49Updated 2 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆110Updated last month
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆64Updated 4 months ago
• hac01 / gcp-iam-brute
  ☆39Updated 7 months ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆97Updated 2 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆19Updated last year