sbasu7241 / AWS-Threat-Simulation-and-Detection
Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
☆284Updated 2 years ago
Alternatives and similar repositories for AWS-Threat-Simulation-and-Detection:
Users that are interested in AWS-Threat-Simulation-and-Detection are comparing it to the libraries listed below
- ☆169Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆164Updated 3 months ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆554Updated 2 months ago
- ☆133Updated last year
- This is a collection of threat detection rules / rules engines that I have come across.☆279Updated 8 months ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆266Updated 11 months ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆320Updated 3 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆247Updated 2 months ago
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆113Updated last year
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated 10 months ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆125Updated 9 months ago
- Tool to discover external and internal network attack surface☆193Updated 8 months ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆213Updated 2 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 3 months ago
- A utility to convert your AWS CLI credentials into AWS console access.☆231Updated 4 years ago
- Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions☆236Updated last month
- ☆379Updated last year
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆179Updated 5 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆90Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆65Updated 8 months ago
- Purple Teaming Attack & Hunt Lab - Terraform☆158Updated 3 years ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆487Updated 11 months ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆362Updated 9 months ago
- Halberd : Multi-Cloud Attack Platform☆241Updated last week
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆223Updated 4 months ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆144Updated 2 months ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆323Updated last year
- Awesome list for cloud security related projects☆80Updated 2 years ago
- Damn Vulnerable Cloud Application☆190Updated 6 years ago