Alternatives and similar repositories for terraform-provider-cmdexec:

Users that are interested in terraform-provider-cmdexec are comparing it to the libraries listed below

• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆23Updated 9 months ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆21Updated last year
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated last month
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 7 months ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆72Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆40Updated last year
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆47Updated last year
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated last year
• SecurityRunners / cloud-exposure-catalog
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Updated 7 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• lmoratti / risky-records
  Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
  ☆14Updated 7 months ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• tenable / hidden-services-revealer
  ☆34Updated 8 months ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 8 months ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆53Updated 3 months ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated last year
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• hac01 / gcp-iam-brute
  ☆46Updated 10 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆81Updated last year
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 3 years ago
• securisec / cliam
  Cloud agnostic IAM permissions enumerator
  ☆148Updated 2 weeks ago
• Permiso-io-tools / SkyScalpel
  ☆39Updated 5 months ago
• WithSecureLabs / cloud-wiki
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆51Updated 5 months ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆56Updated 8 months ago
• ropnop / pentest_charts
  Some helpful Helm Charts for pentesters
  ☆39Updated 6 years ago