pop3ret / AWSome-PentestingLinks
My cheatsheet notes to pentest AWS infrastructure
☆700Updated 3 years ago
Alternatives and similar repositories for AWSome-Pentesting
Users that are interested in AWSome-Pentesting are comparing it to the libraries listed below
Sorting:
- Azure and AWS Attacks☆1,107Updated 3 years ago
- ☆571Updated 3 years ago
- ☆751Updated 3 years ago
- ☆720Updated this week
- Create your own vulnerable by design AWS penetration testing playground☆410Updated last week
- Identify privilege escalation paths within and across different clouds☆709Updated 3 weeks ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆426Updated last year
- Websec interview questions by tib3rius answered☆307Updated 2 years ago
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,960Updated 7 months ago
- List of regex for scraping secret API keys and juicy information.☆723Updated 3 years ago
- Checklist of the most important security countermeasures when designing, creating, testing your web/mobile application☆639Updated 5 years ago
- Watch the latest awesome security talks around the globe☆277Updated 10 months ago
- A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.☆652Updated 7 months ago
- API Security Project aims to present unique attack & defense methods in API Security field☆287Updated 3 years ago
- Awesome cloud enumerator☆1,084Updated 10 months ago
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆126Updated 4 years ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆290Updated last year
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆537Updated 4 months ago
- Automating situational awareness for cloud penetration tests.☆2,270Updated this week
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆344Updated 10 months ago
- API Security Project aims to present unique attack & defense methods in API Security field☆1,429Updated last year
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆1,803Updated 3 months ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆671Updated last year
- Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.☆275Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆438Updated 2 weeks ago
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!☆1,933Updated 2 years ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆990Updated 2 weeks ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆739Updated last month
- AzureGoat : A Damn Vulnerable Azure Infrastructure☆908Updated last year
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆315Updated 5 months ago