tenable / cnappgoat

Related projects ⓘ

Alternatives and complementary repositories for cnappgoat

• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆309Updated this week
• orcasecurity / orca-toolbox
  ☆109Updated this week
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆157Updated 9 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆401Updated 2 months ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆140Updated 5 months ago
• Permiso-io-tools / CloudConsoleCartographer
  Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…
  ☆157Updated 6 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆54Updated this week
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆96Updated 11 months ago
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆364Updated last year
• WithSecureLabs / IceKube
  ☆168Updated last month
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆169Updated 9 months ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆175Updated 2 months ago
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆318Updated this week
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆115Updated last month
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆135Updated 2 months ago
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Attack Tool
  ☆208Updated this week
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆167Updated last month
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated 5 months ago
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆480Updated 9 months ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆79Updated 2 months ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆319Updated 11 months ago
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆96Updated last month
• ine-labs / GCPGoat
  GCPGoat : A Damn Vulnerable GCP Infrastructure
  ☆359Updated 3 weeks ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆152Updated 2 months ago
• orcasecurity-research / AIGoat
  AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.
  ☆81Updated 2 months ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆83Updated 2 months ago
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆184Updated 3 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆253Updated last week
• secengjeff / awskillswitch
  Lambda function that streamlines containment of an AWS account compromise
  ☆315Updated 11 months ago