securisec / cliam
Cloud agnostic IAM permissions enumerator
☆140Updated 5 months ago
Alternatives and similar repositories for cliam:
Users that are interested in cliam are comparing it to the libraries listed below
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆197Updated 2 years ago
- A utility to convert your AWS CLI credentials into AWS console access.☆231Updated 4 years ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆101Updated 3 months ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆175Updated last year
- Distribute ordinary bash commands over many systems☆161Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆181Updated 2 years ago
- A GraphQL enumeration and extraction tool☆130Updated 2 years ago
- S3 Account Search☆260Updated 4 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆114Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆113Updated last year
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆71Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆101Updated 3 weeks ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆167Updated 2 weeks ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆186Updated 2 months ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆88Updated 8 months ago
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆62Updated 5 months ago
- Tools to assess DNS security.☆151Updated 11 months ago
- ☆124Updated 7 months ago
- A simple remote scanner for Atlassian Jira☆120Updated 2 years ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆123Updated 10 months ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- ☆109Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆189Updated 6 months ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆113Updated last year
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆268Updated 5 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆132Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆256Updated 7 months ago