Alternatives and similar repositories for AWS-Loot

Users that are interested in AWS-Loot are comparing it to the libraries listed below

• nccgroup / cowcloud
  ☆59Updated 2 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Updated last year
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆70Updated 3 years ago
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆66Updated 11 months ago
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆32Updated 3 years ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 2 years ago
• grines / scour
  ☆127Updated last year
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆51Updated last year
• carlospolop / Cloudtrail2IAM
  ☆24Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆32Updated 4 years ago
• JupiterOne-Archives / j1nuclei
  ☆14Updated last year
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆50Updated 2 years ago
• iamavu / Slyther
  AWS Security Tool
  ☆30Updated last year
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• praetorian-inc / Okta_Watering_Hole
  Next Generation Phishing Tool For Internal / Red Teams
  ☆35Updated 6 years ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆82Updated last week
• 0xsha / ProxyFor
  Validate proxies for specific domain
  ☆36Updated 4 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• carlospolop / gcp_privesc_scripts
  ☆29Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated 3 months ago
• thelicato / fire
  Take domains on stdin and output them on stdout if they get resolved
  ☆33Updated 3 years ago
• bassammaged / awsEnum
  Enumerate AWS cloud resources based on provided credential
  ☆51Updated 3 years ago
• sneakerhax / Arsenal
  Red Team tools, infrastructure, and hardware weaponized
  ☆106Updated 2 months ago
• modulexcite / attacking-and-auditing-docker-containers-and-kubernetes-clusters
  Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
  ☆15Updated 5 years ago
• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆18Updated 3 years ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆19Updated 4 years ago
• pentesteracademy / reconpal
  ReconPal: Leveraging NLP for Infosec
  ☆57Updated 3 years ago