sbasu7241/AWS-Threat-Simulation-and-Detection external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sbasu7241/AWS-Threat-Simulation-and-Detection

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sbasu7241/AWS-Threat-Simulation-and-Detection)

Close

sbasu7241 / AWS-Threat-Simulation-and-DetectionView on GitHubMore

• External links
• Readme badge

Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic

☆308Jan 6, 2023Updated 3 years ago

Alternatives and similar repositories for AWS-Threat-Simulation-and-Detection

Users that are interested in AWS-Threat-Simulation-and-Detection are comparing it to the libraries listed below

• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,267Mar 1, 2026Updated last week
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆339Updated this week
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆605Nov 28, 2024Updated last year
• christophetd / Adaz

  View on GitHub
  Deploy customizable Active Directory labs in Azure - automatically.
  ☆426Dec 5, 2024Updated last year
• mvelazc0 / BadZure

  View on GitHub
  BadZure automates the deployment of intentionally misconfigured Entra ID tenants and Azure subscriptions, populating them with diverse en…
  ☆488Mar 2, 2026Updated last week
• iknowjason / PurpleCloud

  View on GitHub
  A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…
  ☆628Mar 21, 2025Updated 11 months ago
• BishopFox / iam-vulnerable

  View on GitHub
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆550Sep 11, 2025Updated 5 months ago
• PaloAltoNetworks / IAM-Deescalate

  View on GitHub
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Sep 14, 2022Updated 3 years ago
• rootsecdev / Azure-Red-Team

  View on GitHub
  Azure Security Resources and Notes
  ☆1,713Feb 17, 2026Updated 2 weeks ago
• RhinoSecurityLabs / pacu

  View on GitHub
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆5,080Feb 24, 2026Updated last week
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,299Updated this week
• freeload101 / Bloodhound-Portable

  View on GitHub
  Bloodhound Portable for Windows
  ☆53Apr 1, 2023Updated 2 years ago
• cyberark / kubesploit

  View on GitHub
  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…
  ☆1,217Feb 3, 2025Updated last year
• Aetsu / OffensivePipeline

  View on GitHub
  OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team…
  ☆819Oct 27, 2023Updated 2 years ago
• blacklanternsecurity / offensive-azure

  View on GitHub
  Collection of offensive tools targeting Microsoft Azure
  ☆218Jan 18, 2023Updated 3 years ago
• ReversecLabs / Jamf-Attack-Toolkit

  View on GitHub
  Suite of tools to facilitate attacks against the Jamf macOS management platform.
  ☆189Feb 10, 2021Updated 5 years ago
• vectra-ai-research / derf

  View on GitHub
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Jan 12, 2024Updated 2 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆208Jul 21, 2022Updated 3 years ago
• ch33r10 / EnterprisePurpleTeaming

  View on GitHub
  Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
  ☆667Jun 14, 2023Updated 2 years ago
• Hacking-the-Cloud / hackingthe.cloud

  View on GitHub
  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
  ☆2,532Feb 10, 2026Updated 3 weeks ago
• boku7 / azureOutlookC2

  View on GitHub
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆502May 16, 2023Updated 2 years ago
• Flangvik / TeamFiltration

  View on GitHub
  TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
  ☆1,371Oct 22, 2025Updated 4 months ago
• FalconForceTeam / FalconFriday

  View on GitHub
  Hunting queries and detections
  ☆884Oct 30, 2025Updated 4 months ago
• mandiant / Azure_Workshop

  View on GitHub
  ☆614Jun 1, 2023Updated 2 years ago
• hupe1980 / awsrecon

  View on GitHub
  Tool for reconnaissance of AWS cloud environments
  ☆16Oct 9, 2023Updated 2 years ago
• optionalCTF / SSOh-No

  View on GitHub
  User enumeration and password spraying tool for testing Azure AD
  ☆71Mar 3, 2022Updated 4 years ago
• ezra-buckingham / terry-the-terraformer

  View on GitHub
  A CLI for deploying red team infrastructure across mutliple cloud providers, all integrated with a virtual Nebula network, and full ELK i…
  ☆120Jul 23, 2023Updated 2 years ago
• idnahacks / GoodHound

  View on GitHub
  Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
  ☆484Jul 9, 2024Updated last year
• 9rnt / poro

  View on GitHub
  Scan publicly accessible assets on your AWS cloud environment
  ☆136Jan 14, 2026Updated last month
• jatrost / awesome-kubernetes-threat-detection

  View on GitHub
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆405Sep 2, 2023Updated 2 years ago
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆38Jun 9, 2021Updated 4 years ago
• fastlorenzo / redelk-kibana-app

  View on GitHub
  Kibana app for RedELK
  ☆18Mar 19, 2023Updated 2 years ago
• xenoscr / SharpMailBOF

  View on GitHub
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Jun 24, 2021Updated 4 years ago
• cado-security / rip_raw

  View on GitHub
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆134Jan 31, 2022Updated 4 years ago
• ine-labs / AzureGoat

  View on GitHub
  AzureGoat : A Damn Vulnerable Azure Infrastructure
  ☆918Oct 30, 2024Updated last year
• awslabs / aws-security-assessment-solution

  View on GitHub
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆592Nov 12, 2025Updated 3 months ago
• bassammaged / awsEnum

  View on GitHub
  Enumerate AWS cloud resources based on provided credential
  ☆51May 11, 2022Updated 3 years ago
• awslabs / aws-automated-incident-response-and-forensics

  View on GitHub
  ☆401Sep 25, 2023Updated 2 years ago
• dafthack / CloudPentestCheatsheets

  View on GitHub
  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…
  ☆2,803Sep 17, 2024Updated last year