ConsolemeA Central Control Plane for AWS Permissions and Access
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
PandorasBoxSecurity tool to quickly audit Public Box files and folders.
AriaCloudA Docker container for remote penetration testing.
iamzeroIdentity & Access Management simplified and secure.
master-thesisВыпускная квалификационная работа (ВКР) магистра в LaTeX, оформленная в соответствии с нормоконтролем Севастопольского государственного университета в 2017 г.
cdkgoatCdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
tfquerytfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.
AWSXenosAWSXenos will list all the trust relationships in all the IAM roles and S3 buckets
sgCheckupsgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
metabadgerPrevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
CloudFrontierMonitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.