sbasu7241 / AWS-Threat-Simulation-and-Detection
Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
☆292Updated 2 years ago
Alternatives and similar repositories for AWS-Threat-Simulation-and-Detection:
Users that are interested in AWS-Threat-Simulation-and-Detection are comparing it to the libraries listed below
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆562Updated 4 months ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆276Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆166Updated 5 months ago
- �☆173Updated 2 years ago
- ☆136Updated 2 years ago
- This is a collection of threat detection rules / rules engines that I have come across.☆285Updated 11 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 5 months ago
- Tool to discover external and internal network attack surface☆195Updated 11 months ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 3 weeks ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆380Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆92Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆114Updated last year
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆330Updated last year
- ☆386Updated last year
- Dorothy is a tool to test security monitoring and detection for Okta environments☆181Updated 8 months ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆153Updated 5 months ago
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆243Updated last month
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 6 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- Repository resource for threat hunter☆158Updated 6 years ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆107Updated 6 months ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- Purple Teaming Attack & Hunt Lab - Terraform☆159Updated 3 years ago
- A Docker container for remote penetration testing.☆135Updated 4 years ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆224Updated 5 months ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆111Updated 4 years ago
- Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions☆244Updated 2 months ago
- Collection of created MindMaps☆150Updated last year
- Build a attack range in your local machine☆131Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆72Updated 11 months ago