securisec / cliamLinks
Cloud agnostic IAM permissions enumerator
☆153Updated 4 months ago
Alternatives and similar repositories for cliam
Users that are interested in cliam are comparing it to the libraries listed below
Sorting:
- A utility to convert your AWS CLI credentials into AWS console access.☆241Updated 5 years ago
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆218Updated 3 years ago
- Tools to assess DNS security.☆152Updated last year
- S3 Account Search☆14Updated 3 weeks ago
- A GraphQL enumeration and extraction tool☆132Updated 2 years ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆184Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated last week
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆191Updated 8 months ago
- ☆127Updated last year
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆172Updated 6 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆119Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 6 months ago
- Determine privileges from cloud credentials via brute-force testing.☆69Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆274Updated 5 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆187Updated 3 years ago
- ☆89Updated last month
- Find CVE PoCs on GitHub☆151Updated 3 weeks ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆109Updated 9 months ago
- ☆112Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆98Updated last year
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆66Updated 11 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆108Updated last year
- ☆78Updated last year
- Enumerate AWS permissions and resources.☆70Updated 3 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- WAF bypass PoC☆48Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆30Updated 2 years ago
- Scan DockerHub images that match a keyword to find secrets.☆60Updated 4 years ago
- boostsecurityio/lotp☆132Updated 4 months ago