Alternatives and similar repositories for AWS-Loot

Users that are interested in AWS-Loot are comparing it to the libraries listed below

• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆32Updated 4 years ago
• grines / scour
  ☆127Updated last year
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆71Updated 3 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆66Updated last year
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆52Updated 2 years ago
• carlospolop / Cloudtrail2IAM
  ☆24Updated 2 years ago
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆68Updated last year
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆94Updated last year
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆70Updated 7 months ago
• modulexcite / attacking-and-auditing-docker-containers-and-kubernetes-clusters
  Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
  ☆15Updated 5 years ago
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆33Updated 3 years ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• 0xsha / ProxyFor
  Validate proxies for specific domain
  ☆38Updated 4 years ago
• dibsy / Recipies-Of-A-Jenkins-Hacker
  Jenkins Security Research or Hacking Jenkins ;)
  ☆12Updated last year
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 3 years ago
• thelicato / fire
  Take domains on stdin and output them on stdout if they get resolved
  ☆32Updated 3 years ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆156Updated last year
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆81Updated 4 months ago
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆50Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 3 years ago
• OWASP / wwwgrep
  OWASP Foundation Web Respository
  ☆36Updated 4 years ago
• gdraperi / slurp-1
  S3 bucket enumerator
  ☆30Updated 6 years ago
• ayushpriya10 / IMDShift
  ☆55Updated 2 years ago
• shivsahni / NSDetect
  ☆23Updated 3 years ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆50Updated 2 years ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated 2 years ago