padok-team / yatas
A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
☆319Updated 2 weeks ago
Alternatives and similar repositories for yatas:
Users that are interested in yatas are comparing it to the libraries listed below
- An AWS IAM policy statement parser and query tool.☆176Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆271Updated 7 months ago
- find dangling domains in a multi cloud environment☆142Updated last week
- cloudgrep is grep for cloud storage☆327Updated last month
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆279Updated 7 months ago
- OWASP Domain Protect - prevent subdomain takeover☆398Updated 4 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆139Updated 3 months ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆170Updated last month
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆224Updated 5 months ago
- ☆116Updated last month
- AWS Attack Path Management Tool - Walking on the Moon☆244Updated 4 months ago
- ☆177Updated last week
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆106Updated 5 months ago
- Scan publicly accessible assets on your AWS cloud environment☆139Updated 10 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆101Updated 5 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆495Updated last year
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆103Updated last year
- AWS honey token manager☆87Updated 8 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆107Updated 6 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆164Updated 11 months ago
- Vulnerability scanner for AWS customer managed policies using ChatGPT☆162Updated 2 years ago
- S3 Account Search☆4Updated 6 months ago
- A full insecure kubernetes application for testing security tools☆70Updated this week
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)☆98Updated 2 years ago
- List of known AWS accounts☆198Updated 2 weeks ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆168Updated 2 months ago
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.☆81Updated 3 years ago
- Protect against subdomain takeover☆92Updated 11 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 5 months ago
- ☆140Updated this week