stephenbradshaw/aws_url_signer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

stephenbradshaw/aws_url_signer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/stephenbradshaw/aws_url_signer)

Close

stephenbradshaw / aws_url_signerView on GitHubMore

• External links
• Readme badge

POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF

☆59Sep 20, 2023Updated 2 years ago

Alternatives and similar repositories for aws_url_signer

Users that are interested in aws_url_signer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HarshVaragiya / aws-redteam-kit

  View on GitHub
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆33Oct 14, 2024Updated last year
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆291Jun 10, 2026Updated last week
• Frichetten / SneakyEndpoints

  View on GitHub
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆121Jul 13, 2025Updated 11 months ago
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• Frichetten / aws_api_shapeshifter

  View on GitHub
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Nov 2, 2023Updated 2 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• Frichetten / aws-api-models

  View on GitHub
  A collection of documented and undocumented AWS API models
  ☆55Nov 21, 2025Updated 6 months ago
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• Rezonate-io / github-oidc-checker

  View on GitHub
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61May 15, 2023Updated 3 years ago
• ustayready / outpost

  View on GitHub
  AWS Testing and Reporting Management Tool
  ☆20Jan 23, 2023Updated 3 years ago
• ReversecLabs / encap-attack

  View on GitHub
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆24Apr 27, 2026Updated last month
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• hakaioffsec / gcp_enum

  View on GitHub
  A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.
  ☆18Jan 31, 2024Updated 2 years ago
• doyensec / oidc-ssrf

  View on GitHub
  An Evil OIDC Server
  ☆53Oct 19, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• invictus-ir / Invictus-AWS

  View on GitHub
  A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …
  ☆200Jan 6, 2026Updated 5 months ago
• ReversecLabs / cloud-wiki

  View on GitHub
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆52Nov 12, 2024Updated last year
• gojek / CureIAM

  View on GitHub
  Clean accounts over permissions in GCP infra at scale
  ☆72May 9, 2023Updated 3 years ago
• doyensec / cloudsec-tidbits

  View on GitHub
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆72May 27, 2026Updated 3 weeks ago
• StateFarmIns / CLAWS

  View on GitHub
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆62Nov 11, 2024Updated last year
• ReversecLabs / IceKube

  View on GitHub
  ☆191May 29, 2026Updated 2 weeks ago
• NetSPI / FuncoPop

  View on GitHub
  Tools for attacking Azure Function Apps
  ☆89Oct 28, 2025Updated 7 months ago
• AbstractClass / CloudPrivs

  View on GitHub
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Aug 22, 2024Updated last year
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Apr 13, 2026Updated 2 months ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• domain-protect / domain-protect-gcp

  View on GitHub
  Protect against subdomain takeover
  ☆95Updated this week
• DataDog / workload-security-evaluator

  View on GitHub
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆38Oct 17, 2024Updated last year
• NotSoSecure / cloud-sec-wiki

  View on GitHub
  Jekyll Files for cloudsecwiki.com
  ☆50Sep 16, 2021Updated 4 years ago
• n0jam / gcp-ctf-workshop

  View on GitHub
  ☆40Nov 29, 2024Updated last year
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated last year
• Azure / azure-iac-workshop-content

  View on GitHub
  Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…
  ☆24Jun 14, 2023Updated 3 years ago
• doyensec / Session-Hijacking-Visual-Exploitation

  View on GitHub
  Session Hijacking Visual Exploitation
  ☆213Mar 7, 2024Updated 2 years ago
• FalconForceTeam / reply-url-brute

  View on GitHub
  Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure
  ☆15Jan 23, 2025Updated last year
• NetSPI / gcpwn

  View on GitHub
  Pentesting framework for GCP that enumerates/downloads data that feeds into a BloodHound Opengraph model. Includes credential management,…
  ☆300Jun 12, 2026Updated last week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• redskal / SharpAzbelt

  View on GitHub
  .NET port of Leron Gray's azbelt tool.
  ☆26Sep 21, 2023Updated 2 years ago
• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 9 months ago
• salesforce / metabadger

  View on GitHub
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143May 1, 2025Updated last year
• ReversecLabs / IAMGraph

  View on GitHub
  ☆73Jan 8, 2025Updated last year
• spotify / gcp-aws-iam-federation-webidentity

  View on GitHub
  Creates needed resources for federating access between a GCP service account and AWS IAM role.
  ☆30Apr 3, 2024Updated 2 years ago
• talbeerysec / STS-token-decoder

  View on GitHub
  AWS STS token decoder
  ☆47Mar 18, 2025Updated last year
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆114Jan 2, 2025Updated last year