cloudfox
Cloud scanner
An open-source tool to help penetration testers gather information about cloud environments and identify potential vulnerabilities.
Automating situational awareness for cloud penetration tests.
2k stars
30 watching
183 forks
Language: Go
last commit: about 1 month ago
Linked from 3 awesome lists
awscloudcloud-securitygolangpenetration-testing-toolssecurity
teamssix/awesome-cloud-security
kyuu-ji/awesome-azure-pentest
funkmyster/awesome-cloud-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
| bishopfox/gitgot | A tool to search public GitHub data for sensitive secrets using feedback-driven semi-automation | 1,453 |
| bishopfox/smogcloud | Automatically identifies and monitors cloud assets exposed to the internet without authorization | 332 |
| bishopfox/zigdiggity | A toolkit for testing and exploiting ZigBee networks to identify vulnerabilities in IoT devices | 261 |
 jordanpotti/cloudscraper | A tool to spider and search cloud resources like AWS, Azure, and Digital Ocean for potential vulnerabilities. | 501 |
 securityftw/cs-suite | An automated tool suite to assess and improve cloud security across multiple platforms | 1,144 |
 digininja/cloudstoragefinder | A collection of tools to search public data in various cloud storage systems | 71 |
 belane/cloudhunter | Tools for scanning and analyzing cloud storage bucket permissions | 120 |
 0xsha/cloudbrute | A tool to automatically discover and enumerate cloud infrastructure and applications across multiple providers. | 871 |
 mindpointgroup/cloudfrunt | A tool for identifying misconfigured CloudFront domains to prevent domain hijacking | 346 |
| bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 deepfence/threatmapper | An application protection platform that monitors and analyzes cloud-native applications for vulnerabilities and threats. | 4,837 |
 adminisme/serverscan | A high-performance network scanning and service discovery tool with support for multiple platforms and tools | 1,559 |
| bishopfox/dufflebag | Searches public EBS snapshots for hidden secrets and passwords | 286 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,766 |
 andresriancho/nimbostratus | Tools to discover vulnerabilities in Amazon cloud infrastructure | 447 |