piercing-index / cloud-vulnerabilities
☆41Updated 3 weeks ago
Alternatives and similar repositories for cloud-vulnerabilities:
Users that are interested in cloud-vulnerabilities are comparing it to the libraries listed below
- ☆37Updated 2 weeks ago
- ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…☆57Updated last year
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆27Updated last year
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆53Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆30Updated 5 months ago
- ☆73Updated 9 months ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆68Updated 10 months ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆91Updated last year
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 9 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Virtual Security Operations Center☆50Updated last year
- ☆18Updated 2 years ago
- AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, …☆45Updated 4 years ago
- ☆18Updated 3 years ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆36Updated 5 months ago
- ☆43Updated 9 months ago
- Generates runbooks for GuardDuty findings☆35Updated 8 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 4 months ago
- ☆134Updated last year
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆51Updated 4 months ago
- A fun POC that is built to understand AI security agents.☆25Updated 2 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆60Updated last year
- ☆34Updated 3 months ago
- A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).☆31Updated 2 weeks ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated 5 months ago
- ☆38Updated 4 months ago
- InfoSec OpenAI Examples☆19Updated last year