barq

EC2 attack tool

An AWS-focused post-exploitation framework that enables attackers to compromise running EC2 instances without needing original credentials.

barq: The AWS Cloud Post Exploitation framework!

GitHub

386 stars
19 watching
64 forks
Language: Python
last commit: about 2 years ago

Related projects:

Repository Description Stars
aws-solutions/aws-waf-security-automations Automates deployment of AWS WAF security rules to protect against common web-based attacks 857
carnal0wnage/weirdaal A Python-based toolkit for testing and exploiting AWS services 781
byt3bl33d3r/silenttrinity An asynchronous, collaborative post-exploitation framework that uses .NET's DLR to dynamically call APIs and offers features like multi-user collaboration, real-time updates, and dynamic compilation of tasks. 2,196
airbnb/binaryalert Real-time malware detection and alert system for AWS S3 files 1,409
pyroxenites/boftools A collection of tools and techniques for exploiting vulnerabilities in software applications. 17
toniblyx/my-arsenal-of-aws-security-tools A curated list of open-source tools for assessing and improving AWS security posture 8,983
globaldatanet/aws-firewall-factory A tool to simplify the deployment and management of AWS Web Application Firewalls (WAFs) in cloud-based applications. 236
sergiomarotco/azure-devops-server-supply-chain-attack-tree An attack tree model for identifying potential security vulnerabilities in an Azure DevOps Server supply chain. 7
trouble-1/vajra A tool for simulating attacks on cloud environments such as Azure and AWS 375
matterpreter/offensivecsharp A collection of C# tooling and POCs for operating system exploitation and vulnerability assessment. 1,381
atorrescogollo/offensive-tor-toolkit A toolkit for utilizing Tor network for various exploitation and post-exploitation tasks. 58
awslabs/amazon-inspector-auto-remediate Automatically patches vulnerable EC2 instances after receiving an Inspector assessment notification 58
0x4d31/honeylambda A simple serverless application designed to create and monitor fake HTTP endpoints for security testing 513
13o-bbr-bbq/machine_learning_security A collection of tools and techniques for applying machine learning to improve security in software applications 1,979
nxenon/h2spacex A low-level HTTP/2 library for exploiting race conditions in web servers 140