yahoo / SubdomainSleuth
Scanner to identify dangling DNS records and subdomain takeovers
☆40Updated 2 months ago
Alternatives and similar repositories for SubdomainSleuth:
Users that are interested in SubdomainSleuth are comparing it to the libraries listed below
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- ☆42Updated 8 months ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆30Updated 2 years ago
- Determine privileges from cloud credentials via brute-force testing.☆66Updated 5 months ago
- ☆10Updated 2 years ago
- An AWS metadata enumeration tool by Plerion☆87Updated last year
- ☆30Updated 3 years ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 3 months ago
- GCP cloud security CTF☆42Updated 11 months ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆100Updated last year
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆51Updated 3 months ago
- AWS SSO serverless phishing API.☆31Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- This repository provides a comprehensive collection of Pulumi scenarios utilized by cnappgoat☆20Updated 2 weeks ago
- ☆55Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆99Updated 3 months ago
- Do bulk whois lookups and get alerted on domains of interest.☆24Updated 6 months ago
- Detections for CVE-2021-44228 inside of nested binaries☆34Updated 3 years ago
- ☆14Updated last year
- ☆17Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆63Updated last year
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆164Updated 3 months ago
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- A simple script that generates an Excel friendly CSV file from an Amass JSON file.☆13Updated 2 years ago
- Virtual Security Operations Center☆50Updated last year
- Examine Chrome extensions for security issues☆74Updated this week
- WAF bypass PoC☆46Updated last year
- boostsecurityio/lotp☆112Updated this week
- ☆20Updated last year