piercing-index / cloud-vulnerabilitiesLinks
☆44Updated 2 months ago
Alternatives and similar repositories for cloud-vulnerabilities
Users that are interested in cloud-vulnerabilities are comparing it to the libraries listed below
Sorting:
- The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…�☆30Updated 6 months ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆70Updated 7 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated last year
- ☆41Updated last year
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Updated 2 years ago
- ☆80Updated last year
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆54Updated 2 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆33Updated 3 years ago
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects☆34Updated 9 months ago
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆102Updated 7 months ago
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆51Updated last year
- A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).☆49Updated 3 weeks ago
- ☆14Updated 2 weeks ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆38Updated last year
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated 2 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated last year
- ☆18Updated 3 years ago
- This repository provides a comprehensive collection of Pulumi scenarios utilized by cnappgoat☆21Updated 10 months ago
- Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…☆59Updated 2 years ago
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆14Updated 6 months ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆81Updated last year
- ☆81Updated last month
- ☆50Updated last year
- ☆20Updated 3 years ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆37Updated last year
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆31Updated 3 weeks ago
- ☆31Updated 2 weeks ago
- RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…☆60Updated 10 months ago
- A catalog of services that can be publicly exposed within different cloud providers.☆15Updated last year