ustayready / cloudgpt
Vulnerability scanner for AWS customer managed policies using ChatGPT
☆150Updated last year
Alternatives and similar repositories for cloudgpt:
Users that are interested in cloudgpt are comparing it to the libraries listed below
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆104Updated 4 months ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆141Updated 2 years ago
- Crawlector is a threat hunting framework designed for scanning websites for malicious objects.☆126Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆165Updated 5 months ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated last year
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 4 months ago
- An open-source self-hosted purple team management web application.☆265Updated this week
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 5 months ago
- Nuclei templates for honeypots detection.☆195Updated last year
- ☆110Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆138Updated 3 months ago
- Collection of offensive tools targeting Microsoft Azure☆206Updated 2 years ago
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆121Updated 3 years ago
- ☆172Updated last year
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆101Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆91Updated last year
- Verizon Burp Extensions: AI Suite☆112Updated last week
- A Slack bot phishing framework for Red Teaming exercises☆166Updated 11 months ago
- A tool to curate compelling news on cloud technologies and cybersecurity. By aggregating information from RSS feeds and Reddit, it identi…☆33Updated 7 months ago
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆102Updated 11 months ago
- Tool to discover external and internal network attack surface☆195Updated 10 months ago
- Shortemall is a Python-based tool that automates the process of scanning hidden content of Short URLs.☆89Updated 11 months ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆167Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆216Updated 3 weeks ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆115Updated last year
- A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud☆116Updated 2 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆166Updated last month
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆230Updated last year
- This is a RSS feed collection for all the InfoSec Content Creators☆32Updated last year