cloudjack
Vulnerability scanner
Checks AWS accounts for subdomain hijacking vulnerabilities
Route53/CloudFront Vulnerability Assessment Utility
84 stars
6 watching
23 forks
Language: Python
last commit: over 1 year ago
Linked from 1 awesome list
awscloudfrontroute53vulnerability
teamssix/awesome-cloud-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 hashishrajan/cloud-security-vulnerabilities | Lists publicly disclosed vulnerabilities in various cloud services. | 357 |
 salesforce/cloudsplaining | A tool that scans AWS IAM policies to identify security vulnerabilities and generates a report with recommendations for remediation | 2,009 |
 spectralops/preflight | A tool to verify scripts and executables against known vulnerabilities to prevent chain of supply attacks | 152 |
 m0rtem/cloudfail | Reconnaissance tool that gathers information about a Cloudflare-protected target to discover its server location using misconfigured DNS and old database records. | 2,251 |
 bridgecrewio/checkov | An automated tool for identifying security and compliance vulnerabilities in cloud infrastructure and software packages. | 7,214 |
 macmod/stars | Identifies potential subdomain takeover issues in cloud DNS environments | 49 |
 jcesarstef/dotdotslash | Automated tool to test website directory traversal vulnerabilities by injecting user-controlled input into URLs and analyzing responses. | 422 |
 someengineering/fixinventory | Tools to identify and remove critical risks in cloud infrastructure accounts by analyzing metadata from APIs of various cloud services | 1,617 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 mindpointgroup/cloudfrunt | A tool for identifying misconfigured CloudFront domains to prevent domain hijacking | 347 |
 hasecuritysolutions/vulnwhisperer | Automates vulnerability scanning and reporting by integrating multiple scanners into a unified platform | 1,362 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 andresriancho/nimbostratus | Tools to discover vulnerabilities in Amazon cloud infrastructure | 448 |
 dowjones/hammer | Identifies and protects insecure configurations in AWS resources across multiple accounts. | 437 |
 aquasecurity/cloudsploit | A tool designed to detect security risks in cloud infrastructure accounts | 3,372 |