A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
☆341Jun 18, 2026Updated last week
Alternatives and similar repositories for yatas
Users that are interested in yatas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Plugin for YATAS that audits AWS accounts for misconfiguration and security issues☆15Updated this week
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆112Feb 16, 2024Updated 2 years ago
- Automating situational awareness for cloud penetration tests.☆2,510May 26, 2026Updated last month
- Cloud Exploit Framework☆112May 11, 2022Updated 4 years ago
- cloudgrep is grep for cloud storage☆330Mar 14, 2026Updated 3 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Guidelines to work with Terraform☆32Feb 5, 2026Updated 4 months ago
- The state of my kubernetes cluster☆10Jun 21, 2026Updated last week
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …☆201Jan 6, 2026Updated 5 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆1,034Updated this week
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆181Jan 12, 2026Updated 5 months ago
- User enumeration and password spraying tool for testing Azure AD☆71Mar 3, 2022Updated 4 years ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆114Nov 13, 2024Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆33Oct 14, 2024Updated last year
- Generates runbooks for GuardDuty findings☆38Jun 24, 2024Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Credax - Fuzzing Tool with Slack Notifications. Also removes false positive responses.☆10Oct 14, 2021Updated 4 years ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆678Feb 17, 2026Updated 4 months ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆292Jun 10, 2026Updated 2 weeks ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,563Aug 2, 2024Updated last year
- List of known AWS accounts☆261Apr 2, 2026Updated 2 months ago
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆90Jun 22, 2024Updated 2 years ago
- Granular, Actionable Adversary Emulation for the Cloud☆2,349Jun 16, 2026Updated last week
- Proof of concept code for Datadog Security Labs referenced exploits.☆448Jun 16, 2026Updated last week
- ☆116Feb 11, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Create your own vulnerable by design AWS penetration testing playground☆457May 1, 2026Updated last month
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Jan 12, 2024Updated 2 years ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆57Oct 23, 2024Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆71Sep 20, 2024Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆69Aug 22, 2024Updated last year
- Collection of offensive tools targeting Microsoft Azure☆223Apr 1, 2026Updated 2 months ago
- Zed Attack Proxy Scripts for finding CVEs and Secrets.☆126Jun 2, 2022Updated 4 years ago
- https://breaches.cloud☆42Jun 14, 2026Updated 2 weeks ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆169May 6, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Pass secrets as environment variables to a process☆127Updated this week
- ☆51Jun 13, 2024Updated 2 years ago
- This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.☆662Updated this week
- Monkey365 is an open-source security assessment tool for Microsoft 365, Azure, and Microsoft Entra ID. It helps security professionals id…☆1,300May 18, 2026Updated last month
- An AWS IAM policy statement parser and query tool.☆201Feb 10, 2026Updated 4 months ago
- ☆143Jun 3, 2026Updated 3 weeks ago
- Secrets scanner that understands code☆192Nov 2, 2023Updated 2 years ago