stephenbradshaw/aws_url_signer external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

stephenbradshaw/aws_url_signer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/stephenbradshaw/aws_url_signer)

Close

stephenbradshaw / aws_url_signerView on GitHubMore

• External links
• Readme badge

POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF

☆59Sep 20, 2023Updated 2 years ago

Alternatives and similar repositories for aws_url_signer

Users that are interested in aws_url_signer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HarshVaragiya / aws-redteam-kit

  View on GitHub
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆33Oct 14, 2024Updated last year
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆284Nov 27, 2025Updated 4 months ago
• Frichetten / SneakyEndpoints

  View on GitHub
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆121Jul 13, 2025Updated 8 months ago
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• Frichetten / aws_api_shapeshifter

  View on GitHub
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Nov 2, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• Frichetten / aws-api-models

  View on GitHub
  A collection of documented and undocumented AWS API models
  ☆53Nov 21, 2025Updated 4 months ago
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• Rezonate-io / github-oidc-checker

  View on GitHub
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61May 15, 2023Updated 2 years ago
• ustayready / outpost

  View on GitHub
  AWS Testing and Reporting Management Tool
  ☆20Jan 23, 2023Updated 3 years ago
• ReversecLabs / encap-attack

  View on GitHub
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆23Aug 30, 2024Updated last year
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• hakaioffsec / gcp_enum

  View on GitHub
  A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.
  ☆17Jan 31, 2024Updated 2 years ago
• invictus-ir / Invictus-AWS

  View on GitHub
  A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …
  ☆198Jan 6, 2026Updated 2 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• doyensec / oidc-ssrf

  View on GitHub
  An Evil OIDC Server
  ☆53Oct 19, 2022Updated 3 years ago
• gojek / CureIAM

  View on GitHub
  Clean accounts over permissions in GCP infra at scale
  ☆71May 9, 2023Updated 2 years ago
• ReversecLabs / cloud-wiki

  View on GitHub
  A public cloud security knowledgebase - https://www.secwiki.cloud/
  ☆51Nov 12, 2024Updated last year
• doyensec / cloudsec-tidbits

  View on GitHub
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Jun 13, 2023Updated 2 years ago
• StateFarmIns / CLAWS

  View on GitHub
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆62Nov 11, 2024Updated last year
• ReversecLabs / IceKube

  View on GitHub
  ☆187Mar 2, 2026Updated 3 weeks ago
• NetSPI / FuncoPop

  View on GitHub
  Tools for attacking Azure Function Apps
  ☆88Oct 28, 2025Updated 5 months ago
• AbstractClass / CloudPrivs

  View on GitHub
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Aug 22, 2024Updated last year
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Jan 6, 2026Updated 2 months ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• domain-protect / domain-protect-gcp

  View on GitHub
  Protect against subdomain takeover
  ☆95Jul 20, 2025Updated 8 months ago
• DataDog / workload-security-evaluator

  View on GitHub
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Oct 17, 2024Updated last year
• NotSoSecure / cloud-sec-wiki

  View on GitHub
  Jekyll Files for cloudsecwiki.com
  ☆49Sep 16, 2021Updated 4 years ago
• n0jam / gcp-ctf-workshop

  View on GitHub
  ☆40Nov 29, 2024Updated last year
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated last year
• Azure / azure-iac-workshop-content

  View on GitHub
  Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…
  ☆24Jun 14, 2023Updated 2 years ago
• doyensec / Session-Hijacking-Visual-Exploitation

  View on GitHub
  Session Hijacking Visual Exploitation
  ☆211Mar 7, 2024Updated 2 years ago
• redskal / SharpAzbelt

  View on GitHub
  .NET port of Leron Gray's azbelt tool.
  ☆26Sep 21, 2023Updated 2 years ago
• FalconForceTeam / reply-url-brute

  View on GitHub
  Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure
  ☆15Jan 23, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• NetSPI / gcpwn

  View on GitHub
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆290May 16, 2025Updated 10 months ago
• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 6 months ago
• salesforce / metabadger

  View on GitHub
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆144May 1, 2025Updated 10 months ago
• spotify / gcp-aws-iam-federation-webidentity

  View on GitHub
  Creates needed resources for federating access between a GCP service account and AWS IAM role.
  ☆30Apr 3, 2024Updated last year
• ReversecLabs / IAMGraph

  View on GitHub
  ☆71Jan 8, 2025Updated last year
• talbeerysec / STS-token-decoder

  View on GitHub
  AWS STS token decoder
  ☆47Mar 18, 2025Updated last year
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆113Jan 2, 2025Updated last year