Find cloud assets that no one wants exposed 🔎 ☁️
-
Updated
Jul 20, 2020 - Go
Find cloud assets that no one wants exposed 🔎 ☁️
Azure security auditor that finds what Azure Security Center doesn't
sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
Automated Persistence and Lateral Movement using GCP Patch Management
Identity & Access Management simplified and secure.
AWS-audit is a tool to review AWS configuration of several services
A collection of cloud security icons ☁️🔒
Secret management by contract toolchain
Tool for reconnaissance of AWS cloud environments
A fast S3 bucket suffix brute force tool to identify existing buckets
veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集
Awesome cloud enumerator
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
AWS hardening tools
An Cloud PolicyDocument go parsing library for AWS-like Cloud providers
Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump / Pod Verified IP discovery
Automating situational awareness for cloud penetration tests.
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Registry for cloud and SaaS providers for StackQL, generated from extensions to the providers OpenAPI3 specification
Add a description, image, and links to the cloud-security topic page so that developers can more easily learn about it.
To associate your repository with the cloud-security topic, visit your repo's landing page and select "manage topics."