Stave finds compound attack paths that single-resource scanners miss. AWS security findings from configuration snapshots — no credentials required.
☆20Jul 14, 2026Updated this week
Alternatives and similar repositories for stave
Users that are interested in stave are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to check the CloudTrail configuration and the services where trails are sent, to detect potential attacks to CloudTrail logging.☆13May 25, 2024Updated 2 years ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆65Jan 25, 2025Updated last year
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated 2 years ago
- TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…☆52May 2, 2026Updated 2 months ago
- Simple web app to track OWASP WSTG security testing progress☆29Sep 12, 2025Updated 10 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Autonomous, read-only endpoint investigation via MCP. Ask a question about your fleet, get a narrative answer with containment recommenda…☆22Jul 6, 2026Updated last week
- Simplified CloudTrail analysis for AI agents☆41Updated this week
- Cloak, Honey, Trap: Proactive Defenses Against LLM Agents☆31Jul 9, 2025Updated last year
- A Python tool to manage GitHub Organizations and perform backup☆21Mar 26, 2026Updated 3 months ago
- Modern Web Application Firewall for Kong Gateway☆28Jul 7, 2026Updated last week
- WPAUDIT: Advanced WordPress security auditing suite & vulnerability scanner. Automates pentesting with Nmap, WPScan, Nuclei, SQLMap. Comp…☆38May 27, 2025Updated last year
- DriverSentinel is a security tool developed in Go that detects malicious and vulnerable drivers on Windows systems by comparing them agai…☆36May 2, 2026Updated 2 months ago
- A local daemon-backed AWS temporary credential broker, exposed over a Unix socket and controlled via CLI.☆19Updated this week
- Host Internal Static Website on AWS☆17Dec 6, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- One reliable canonical source for AI coding agent rules, commands, skills, MCP, hooks, and permissions — synced across AI coding assistan…☆18Updated this week
- Collect IAM information from all your AWS organization, accounts, and resources.☆87Updated this week
- ☆54Oct 27, 2024Updated last year
- ☆22Jan 6, 2025Updated last year
- AI-Powered Offensive Security Research Engine - desktop-native security testing platform with native MCP integration. 90 tools, MITM prox…☆38Updated this week
- Public repository of all things cloud security.☆47Sep 20, 2024Updated last year
- ☆68May 18, 2026Updated last month
- PhantomFS is a Windows honeypot that projects convincing decoy files — credentials, financials, SSH keys — into a virtual directory via P…☆40Updated this week
- Local CLI tool for browser extension risk analysis☆31Apr 11, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Unauthenticated enumeration of AWS IAM Roles.☆28Apr 18, 2026Updated 2 months ago
- The Developer's Guide to AI - A Field Guide for the Working Developer☆69Jun 19, 2026Updated 3 weeks ago
- Python CLI that creates GitHub repos with safe defaults — branch protection, Dependabot, secret scanning, and pre-flight security scannin…☆38Jul 7, 2026Updated last week
- OpenGraph Collector for Tailscale☆43Updated this week
- NextPGP is a elegant and powerful, modern online PGP tool built with Next.js. It can generate keys, manage keyrings, encrypt and decrypt …☆27Jun 26, 2026Updated 2 weeks ago
- TachyonFX FTL is a browser-based editor and previewer for TachyonFX effects, powered by Ratzilla and Ace Editor☆28Feb 25, 2026Updated 4 months ago
- Baseline rules files to improve the security of AI-generated code (Claude, Cursor, Copilot + more)☆236Dec 23, 2025Updated 6 months ago
- A small security playground implementation of GHOSTS User Simulation framework with an Active Directory deployment and Elastic.☆20Jul 17, 2024Updated last year
- Python script to launch burp scans automatically☆32Jul 18, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This JavaScript CLI "undeletes' packages that have been removed from the NPM registry☆33Apr 29, 2026Updated 2 months ago
- A tool for creating pivot tables from the command line.☆14Mar 16, 2023Updated 3 years ago
- Modular Go framework for attack surface management, reconnaissance, and vulnerability scanning.☆158Jul 6, 2026Updated last week
- Open-source, self-hosted OSINT investigation platform: turn documents into a live, investigated entity graph. Autonomous agent, graph ana…☆49Jun 15, 2026Updated 3 weeks ago
- Using ImpersonatedCredentials for Google Cloud API and id_tokens☆16Aug 22, 2022Updated 3 years ago
- Jailer is an eBPF-based process jailing system that provides mandatory access control (MAC) for Linux. It tracks processes using BPF task…☆57Mar 16, 2026Updated 3 months ago
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆103Updated this week