pumasecurity / serverless-prey

Related projects ⓘ

Alternatives and complementary repositories for serverless-prey

• WithSecureLabs / leonidas
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆499Updated this week
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆317Updated 2 years ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆356Updated 4 years ago
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆480Updated 9 months ago
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆203Updated last week
• OWASP / Serverless-Goat
  OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws
  ☆320Updated 3 months ago
• brianlam38 / AWS-Certified-Security-Specialty
  AWS Certified Security Specialty (2020) course notes
  ☆115Updated 4 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆136Updated 3 years ago
• ihamburglar / Redboto
  Red Team Scripts for AWS.
  ☆166Updated 4 years ago
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆96Updated 2 years ago
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year
• mykter / aws-security-cert-service-notes
  Security aspects of AWS products for the Security Specialist certification
  ☆208Updated 2 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆334Updated 2 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 4 years ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆133Updated 4 years ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆157Updated 9 months ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆84Updated last year
• easttimor / aws-incident-response
  ☆363Updated 8 months ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆96Updated 11 months ago
• jonrau1 / SyntheticSun
  SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, man…
  ☆76Updated 3 years ago
• sbasu7241 / AWS-Threat-Simulation-and-Detection
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆282Updated last year
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆138Updated 8 months ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 3 years ago
• stuhirst / awssecurity
  for AWS Security material
  ☆246Updated 2 years ago
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆238Updated this week
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆442Updated this week
• OWASP / Serverless-Top-10-Project
  OWASP Serverless Top 10
  ☆213Updated 3 years ago
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆534Updated last year