Automated Red Team Infrastructure deployement using Docker

A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.

AWS IAM linting library

A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure

Multi-Cloud Security Auditing Tool

Data pipelines for cloud config and security data. Build cloud asset inventory, CSPM, FinOps, and vulnerability management solutions. Extract from AWS, Azure, GCP, and 70+ cloud and SaaS sources.

Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into produc…

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

Cloud-related research releases from the Rhino Security Labs team.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.