IAMFinder enumerates and finds users and IAM roles in a target AWS account.
☆110Nov 19, 2020Updated 5 years ago
Alternatives and similar repositories for IAMFinder
Users that are interested in IAMFinder are comparing it to the libraries listed below
Sorting:
- rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, …☆162Apr 22, 2021Updated 4 years ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆283Nov 27, 2025Updated 3 months ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Mar 4, 2022Updated 3 years ago
- The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided☆33Jun 14, 2021Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Sep 30, 2020Updated 5 years ago
- ☆24Aug 9, 2022Updated 3 years ago
- ☆139Mar 29, 2023Updated 2 years ago
- A utility to convert your AWS CLI credentials into AWS console access.�☆256May 7, 2020Updated 5 years ago
- ☆83Dec 5, 2019Updated 6 years ago
- Remote Desktop Protocol .NET Console Application for Authenticated Command Execution☆12Jan 21, 2020Updated 6 years ago
- Alarm routing engine for security and platform incident response teams.☆12Oct 23, 2019Updated 6 years ago
- The SSH Multiplex Backdoor Tool☆65Oct 21, 2019Updated 6 years ago
- User enumeration with Microsoft Teams API☆175Jul 9, 2021Updated 4 years ago
- Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation☆43May 20, 2021Updated 4 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆348Jul 20, 2020Updated 5 years ago
- Tools to assess the DNS security of web applications☆127Oct 5, 2022Updated 3 years ago
- Self-Loading Registration Free COM Functions☆11Nov 12, 2019Updated 6 years ago
- Caterpillar is a security scanning library for AI agent skill files (e.g., Claude Code skills) for dangerous or malicious behavior☆32Feb 16, 2026Updated last week
- FestIn - Open S3 Bucket Scanner☆231Dec 4, 2020Updated 5 years ago
- tool that generates bypasses for open redirects☆51Apr 18, 2022Updated 3 years ago
- A PowerShell script to prevent Sysmon from writing its events☆16Apr 23, 2020Updated 5 years ago
- Pythonize Intruder Payload☆13Dec 15, 2020Updated 5 years ago
- Deliberately vulnerable AWS resources for security assessment demos☆32Aug 20, 2022Updated 3 years ago
- AWS Certified Security Specialty (2020) course notes☆121Oct 2, 2020Updated 5 years ago
- AWS S3 Sensitive Data Search☆35Jan 16, 2022Updated 4 years ago
- Amazon AWS login with Google credentials☆13Feb 11, 2019Updated 7 years ago
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Jun 4, 2022Updated 3 years ago
- Blazing CloudTrail since 2018☆138Jan 27, 2019Updated 7 years ago
- A collection of AWS penetration testing junk☆1,220Aug 30, 2023Updated 2 years ago
- Scoring Engine for CTF competitions☆48Feb 15, 2023Updated 3 years ago
- SkyWrapper helps to discover suspicious creation forms and uses of temporary tokens in AWS☆108Mar 25, 2021Updated 4 years ago
- Enumerate the permissions associated with AWS credential set☆1,219Feb 5, 2024Updated 2 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Sep 14, 2021Updated 4 years ago
- Search for secrets inside user data attached to EC2 instances on multiple AWS accounts☆16Jun 19, 2024Updated last year
- A Security Scanner for Go☆26Feb 11, 2019Updated 7 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated last year
- DNS logging, detection, ...☆15Mar 5, 2022Updated 3 years ago
- Lambda Extension for iamlive☆42May 17, 2021Updated 4 years ago
- Related subdomains finder☆28May 18, 2022Updated 3 years ago