Unauthenticated enumeration of AWS, Azure, and GCP Principals
☆283Nov 27, 2025Updated 3 months ago
Alternatives and similar repositories for quiet-riot
Users that are interested in quiet-riot are comparing it to the libraries listed below
Sorting:
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆59Sep 20, 2023Updated 2 years ago
- List of known AWS accounts☆257Feb 6, 2026Updated last month
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆121Jul 13, 2025Updated 7 months ago
- ☆229Feb 24, 2026Updated last week
- S3 Account Search☆37Jul 25, 2025Updated 7 months ago
- Crowdsourced list of sensitive IAM Actions☆159Oct 29, 2024Updated last year
- A tool for quickly evaluating IAM permissions in AWS.☆1,544Aug 2, 2024Updated last year
- Resource types that can be publicly exposed on AWS☆331Feb 23, 2022Updated 4 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated last year
- Search exposed EBS volumes for secrets☆302Apr 24, 2023Updated 2 years ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- A utility to convert your AWS CLI credentials into AWS console access.☆257May 7, 2020Updated 5 years ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆61Nov 11, 2024Updated last year
- Granular, Actionable Adversary Emulation for the Cloud☆2,267Updated this week
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆174Feb 22, 2026Updated last week
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆606Nov 28, 2024Updated last year
- An AWS IAM policy statement parser and query tool.☆198Feb 10, 2026Updated 3 weeks ago
- Automating situational awareness for cloud penetration tests.☆2,299Updated this week
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆995Oct 4, 2022Updated 3 years ago
- An AWS metadata enumeration tool by Plerion☆101Feb 12, 2024Updated 2 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆110Nov 19, 2020Updated 5 years ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆288May 16, 2025Updated 9 months ago
- A collection of documented and undocumented AWS API models☆53Nov 21, 2025Updated 3 months ago
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆91Mar 17, 2025Updated 11 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆550Sep 11, 2025Updated 5 months ago
- CloudSplaining on AWS Managed Policies☆44Sep 8, 2025Updated 5 months ago
- Swift code to run a dylib on disk☆16May 9, 2022Updated 3 years ago
- ☆38Jun 9, 2021Updated 4 years ago
- ☆46Nov 7, 2024Updated last year
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆755Oct 14, 2023Updated 2 years ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,185Updated this week
- Fun tools around the EBS Direct API☆19Apr 16, 2021Updated 4 years ago
- ☆40Aug 2, 2024Updated last year
- AWS SSO serverless phishing API.☆32Jun 30, 2021Updated 4 years ago
- ☆139Mar 29, 2023Updated 2 years ago
- Terraform module for Policy Sentry.☆26Nov 10, 2020Updated 5 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆60Jan 9, 2022Updated 4 years ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆733Sep 17, 2025Updated 5 months ago
- Bare minimum AWS Security Alerting and Secure by default Configuration☆513May 15, 2025Updated 9 months ago