trustoncloud/threatmodel-for-azure-storage external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

trustoncloud/threatmodel-for-azure-storage

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/trustoncloud/threatmodel-for-azure-storage)

Close

trustoncloud / threatmodel-for-azure-storageView on GitHubMore

• External links
• Readme badge

Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based approach

☆59Feb 21, 2026Updated 2 weeks ago

Alternatives and similar repositories for threatmodel-for-azure-storage

Users that are interested in threatmodel-for-azure-storage are comparing it to the libraries listed below

• Azure / azure-iac-workshop-content

  View on GitHub
  Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…
  ☆23Jun 14, 2023Updated 2 years ago
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆26Jan 6, 2026Updated 2 months ago
• carta / krang

  View on GitHub
  Knowledge Report Alert & Normalization Generator
  ☆26Feb 11, 2026Updated 3 weeks ago
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• trustoncloud / threatmodel-for-aws-s3

  View on GitHub
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆157Updated this week
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated 11 months ago
• tenable / EscalateGPT

  View on GitHub
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆120Feb 4, 2026Updated last month
• Nextdoor / cspm_evaluation_matrix

  View on GitHub
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆59Sep 7, 2023Updated 2 years ago
• lightspin-tech / red-bucket-gcp

  View on GitHub
  ☆10May 12, 2022Updated 3 years ago
• piercing-index / cloud-vulnerabilities

  View on GitHub
  ☆44Oct 16, 2025Updated 4 months ago
• eshlomo1 / Azure-AD-Incident-Response

  View on GitHub
  Azure AD Incident Response
  ☆27Oct 8, 2021Updated 4 years ago
• r3volved / CVEAggregate

  View on GitHub
  Build a CVE library with aggregated CISA, EPSS and CVSS data
  ☆29Sep 27, 2023Updated 2 years ago
• tr4l / iframeBusterXSS

  View on GitHub
  Check for know iframeBuster XSS
  ☆12Sep 25, 2024Updated last year
• GoogleCloudPlatform / scoutsuite-gcp-scan

  View on GitHub
  Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.
  ☆17Jan 5, 2026Updated 2 months ago
• aws-samples / infrastructure-assessment-iac-automation

  View on GitHub
  ☆12Oct 17, 2023Updated 2 years ago
• irsl / google-osconfig-privesc

  View on GitHub
  Proof of concept about the privilege escalation flaw identified in Google's Osconfig
  ☆10Sep 20, 2020Updated 5 years ago
• bytecode77 / component-services-privilege-escalation

  View on GitHub
  Component Services Volatile Environment LPE
  ☆12Jun 28, 2025Updated 8 months ago
• KnudsenMorten / Azure-Recommendations-Get-In-Control

  View on GitHub
  Automate Reporting of Defender for Cloud recommendations & Role Assignments with 35 different views
  ☆12Jan 31, 2023Updated 3 years ago
• bytecode77 / display-languages-privilege-escalation

  View on GitHub
  Display Languages Volatile Environment LPE
  ☆12Jun 28, 2025Updated 8 months ago
• IrisClasson / PowerShell_General

  View on GitHub
  ☆13Oct 10, 2018Updated 7 years ago
• ortegaalfredo / crashbench

  View on GitHub
  Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMs
  ☆14Updated this week
• kmcquade / OWASP-YouTube-2021

  View on GitHub
  Deliberately vulnerable AWS resources for security assessment demos
  ☆32Aug 20, 2022Updated 3 years ago
• Rezonate-io / github-oidc-checker

  View on GitHub
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61May 15, 2023Updated 2 years ago
• michaeltlombardi / PSPrivateGalleryWalkthrough

  View on GitHub
  A walkthrough of deploying and configuring a PowerShell Private Gallery to Azure via ARM Templates, DSC Configurations, and Visual Studio…
  ☆12Mar 8, 2017Updated 9 years ago
• Secure-Compliance-Solutions-LLC / gvm-logstash

  View on GitHub
  Takes in scan reports from the GVM PostgreSQL Database and dump into Elasticsearch
  ☆14Aug 18, 2023Updated 2 years ago
• DataDog / workload-security-evaluator

  View on GitHub
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Oct 17, 2024Updated last year
• adstuart / azure-vwan-anycast

  View on GitHub
  Use Azure Virtual WAN Hub BGP Peering for multi-region Anycast load balancing within private networks
  ☆17Sep 26, 2022Updated 3 years ago
• KatTraxler / gcpdocs

  View on GitHub
  Repository to archive GCP Documentation for local use
  ☆16Feb 11, 2025Updated last year
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆289Feb 5, 2024Updated 2 years ago
• ReversecLabs / encap-attack

  View on GitHub
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆23Aug 30, 2024Updated last year
• OWASP / TimeGap-Theory

  View on GitHub
  An auto-scoring capture-the-flag game focusing on TOCTOU vulnerabilities
  ☆21Oct 28, 2020Updated 5 years ago
• darkoperator / SysmonLinux.Util

  View on GitHub
  PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux
  ☆37Mar 20, 2022Updated 3 years ago
• JosephTLucas / lintML

  View on GitHub
  A security-first linter for code that shouldn't need linting
  ☆18Sep 12, 2023Updated 2 years ago
• ovotech / cloud-key-rotator

  View on GitHub
  A Golang program to rotate AWS & GCP account keys
  ☆67May 12, 2025Updated 9 months ago
• NotSoSecure / AD_delegation_hunting

  View on GitHub
  An attempt to automated hunting for delegation access across the domain
  ☆27Jan 17, 2019Updated 7 years ago
• airbus-cert / PSTrace

  View on GitHub
  Trace ScriptBlock execution for powershell v2
  ☆40Jan 14, 2020Updated 6 years ago
• nullg0re / exchange_hunter2

  View on GitHub
  Hunting for Microsoft Exchange the LDAP Way.
  ☆35Oct 30, 2019Updated 6 years ago