Highlights
- Pro
Cloud Tools
🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
A command-line tool to get valuable information out of AWS CloudTrail
Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
Enumeration and reconnaissance activities in the Microsoft Azure Cloud.
List all your AWS resources, all regions, all services.
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
Route53/CloudFront Vulnerability Assessment Utility
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
A public cloud security knowledgebase - https://www.secwiki.cloud/
Automating situational awareness for cloud penetration tests.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuos monitoring, security assessments and audits, incident response, compliance, harden…
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
This repository contains a collection of awesome tools and scripts for Developers and Engineers seeking to automate routine tasks on AWS Cloud.
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Hands on labs and code to help you learn, measure, and build using architectural best practices.
Collection of offensive tools targeting Microsoft Azure
Identify privilege escalation paths within and across different clouds