smogcloud
Cloud asset monitor
Automatically identifies and monitors cloud assets exposed to the internet without authorization
Find cloud assets that no one wants exposed 🔎 ☁️
332 stars
27 watching
35 forks
Language: Go
last commit: over 4 years ago
Linked from 1 awesome list
amazonawsapi-documentationattack-surfaceawsblueteamcloudcloud-securityinfosecpenetration-testingsecurity-engineersecurity-tools
4ndersonlin/awesome-cloud-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
| bishopfox/cloudfox | An open-source tool to help penetration testers gather information about cloud environments and identify potential vulnerabilities. | 1,953 |
 aquasecurity/cloudsploit | A tool designed to detect security risks in cloud infrastructure accounts | 3,355 |
 salesforce/cloudsplaining | A tool that scans AWS IAM policies to identify security vulnerabilities and generates a report with recommendations for remediation | 1,998 |
 azure/fta-monitoring | Provides tools and guidance for monitoring Azure resources and services to ensure optimal performance and security | 9 |
 dark-kinga/cloudtools | A cloud asset management tool for detecting and managing cloud security vulnerabilities in various cloud services | 902 |
 mindpointgroup/cloudfrunt | A tool for identifying misconfigured CloudFront domains to prevent domain hijacking | 346 |
 prevade/cloudjack | Checks AWS accounts for subdomain hijacking vulnerabilities | 84 |
 sukkaw/cloudflare-block-bad-bot-ruleset | Protects websites from malicious crawlers and bots by filtering out suspicious traffic based on user-agent information | 209 |
 dragondrop-cloud/cloud-concierge | Automates cloud infrastructure monitoring and optimization by analyzing Terraform state files and detecting drifts, security risks, and cost estimation. | 224 |
 someengineering/fixinventory | Tools to identify and remove critical risks in cloud infrastructure accounts by analyzing metadata from APIs of various cloud services | 1,608 |
 googlecloudplatform/security-analytics | Provides a set of community-driven security analytics queries and rules for Google Cloud log analysis | 325 |
 nccgroup/scoutsuite | Automatically assesses and reports on the security configuration of cloud environments. | 6,730 |
 boavizta/cloud-scanner | Analyzes AWS account usage and provides environmental impact estimates based on cloud service usage | 35 |
 0xsha/cloudbrute | A tool to automatically discover and enumerate cloud infrastructure and applications across multiple providers. | 871 |
 m0rtem/cloudfail | Reconnaissance tool that gathers information about a Cloudflare-protected target to discover its server location using misconfigured DNS and old database records. | 2,237 |