Alternatives and similar repositories for cloud-vulnerabilities

Users that are interested in cloud-vulnerabilities are comparing it to the libraries listed below

• OpenSecuritySummit / project-ASVS-User-Stories
  ☆19Updated 3 years ago
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆29Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last month
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆31Updated 3 years ago
• microsoft / Azure-Threat-Research-Matrix
  ☆75Updated last year
• wiz-sec-public / wiz-research-iocs
  ☆42Updated last month
• n0jam / gcp-ctf-workshop
  ☆39Updated 7 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated 8 months ago
• xvnpw / sec-docs
  An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects
  ☆31Updated 4 months ago
• P3tra-WP / Jupyter-Threat
  ☆14Updated 2 years ago
• AppOmni-Labs / event-maturity-matrix
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆21Updated 3 weeks ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 3 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆99Updated last year
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆53Updated 2 years ago
• blackbotsecurity / AWS-Attack
  AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, …
  ☆45Updated 4 years ago
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆53Updated 2 years ago
• trustoncloud / threatmodel-for-azure-storage
  ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…
  ☆59Updated 2 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆51Updated last year
• PaloAltoNetworks / cobra-tool
  Cloud Offensive Breach and Risk Assessment (COBRA) Tool
  ☆92Updated last month
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆33Updated 7 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆104Updated last week
• mitre / training
  A CALDERA plugin
  ☆26Updated 11 months ago
• alexdevassy / AI-Powered-Vulnerability-Impact-Analyzer
  Vulnerability impact analyzer that reduces false positives in SCA tools by performing intelligent code analysis. Uses agentic AI with ope…
  ☆55Updated 4 months ago
• Permiso-io-tools / cloudtail
  ☆30Updated 3 weeks ago
• messypoutine / gravy-overflow
  A GitHub Actions Supply Chain CTF / Goat
  ☆21Updated this week
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• hac01 / gcp-iam-brute
  ☆50Updated last year
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆41Updated 8 months ago