nimbostratus
Cloud scanner
Tools to discover vulnerabilities in Amazon cloud infrastructure
Tools for fingerprinting and exploiting Amazon cloud infrastructures
448 stars
28 watching
75 forks
Language: Python
last commit: about 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| andresriancho/enumerate-iam | A tool to automatically enumerate permissions associated with AWS credentials | 1,105 |
 jordanpotti/awsbucketdump | Automates the process of discovering and analyzing interesting files in Amazon S3 buckets | 1,371 |
 belane/cloudhunter | Tools for scanning and analyzing cloud storage bucket permissions | 134 |
 0ang3el/aem-hacker | Automated vulnerability scanning toolset for Adobe Experience Manager web applications. | 774 |
 gauravnarwani97/trishul | Automated vulnerability detection tool for web applications | 235 |
 carlospolop/purplepanda | A tool that identifies privilege escalation paths in cloud and saas applications by analyzing permissions across multiple platforms. | 673 |
 anirudhbiyani/findmytakeover | Detects DNS record misconfigurations that could be exploited by attackers | 135 |
 malwaretech/citrixhoneypot | A tool designed to detect and log Citrix ADC vulnerability scans and exploitation attempts | 114 |
| carlospolop/legion | An automatic enumeration tool that uses open-source utilities to discover and extract information from network services. | 887 |
 prevade/cloudjack | Checks AWS accounts for subdomain hijacking vulnerabilities | 84 |
 kapejod/rtpnatscan | A command line tool to scan RTP proxies for vulnerabilities to NAT stealing attacks | 24 |
 dannysteenman/aws-toolbox | Tools and scripts for automating routine tasks on AWS Cloud | 1,102 |
 glen-mac/gogetbucket | Automated tool to discover and analyze AWS S3 buckets owned by a specific domain. | 110 |
 eth0izzle/bucket-stream | Tools to identify publicly accessible S3 buckets by monitoring certificate transparency logs. | 1,756 |
 darryllane/bluto | Tools for gathering information about and exploiting vulnerabilities in domains | 620 |