antonini

antonini's Stars

• prowler-cloud/prowler

  Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

  Language:Python9.8k1178461.4k

• projectdiscovery/subfinder

  Fast passive subdomain enumeration tool.

  Language:Go9.5k1554261.2k

• aboul3la/Sublist3r

  Fast subdomains enumeration tool for penetration testers

  Language:Python9.4k2352122.1k

• toniblyx/my-arsenal-of-aws-security-tools

  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

  Language:Shell8.8k392331.5k

• mitre/caldera

  Automated Adversary Emulation Platform

  Language:Python5.3k1667181k

• EdOverflow/can-i-take-over-xyz

  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

  Language:Python4.5k127231682

• guelfoweb/knock

  Knock Subdomain Scan

  Language:Python3.7k13682843

• Findomain/Findomain

  The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

  Language:Rust3.2k59158364

• rabobank-cdc/DeTTECT

  Detect Tactics, Techniques & Combat Threats

  Language:SCSS2k9196330

• salesforce/policy_sentry

  IAM Least Privilege Policy Generator

  Language:Python1.9k23157133

• magnologan/awesome-k8s-security

  A curated list for Awesome Kubernetes Security resources

  1.9k692279

• salesforce/cloudsplaining

  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

  Language:JavaScript1.9k32123178

• screetsec/Sudomy

  Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

  Language:Shell1.9k3387368

• eth0izzle/bucket-stream

  Find interesting Amazon S3 Buckets by watching certificate transparency logs.

  Language:Python1.7k6921208

• bridgecrewio/terragoat

  TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

  Language:HCL1.1k2322.4k

• kolide/fleet

  A flexible control server for osquery fleets

  1.1k551k265

• duo-labs/parliament

  AWS IAM linting library

  Language:Python9912210193

• RhinoSecurityLabs/AWS-IAM-Privilege-Escalation

  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.

  884331116

• duo-labs/cloudtracker

  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.

  Language:Python8762651108

• Obbut/iCloud-Control

  User-controlled selective sync for iCloud Drive

  Language:Swift834423260

• WithSecureLabs/leonidas

  Automated Attack Simulation in the Cloud, complete with detection use cases.

  Language:Jupyter Notebook46426458

• bacen/pix-dict-quickstart

  Quickstart da API do DICT

  Language:Java45093246

• bacen/pix-dict-api

  API do DICT - Diretório de Identificadores de Contas Transacionais

  412904859

• hadiasghari/pyasn

  Python IP address to Autonomous System Number lookup module. (Supports fast local lookups, and historical lookups using archived BGP dumps.)

  Language:Python274125871

• gelim/nmap-erpscan

  Nmap custom probes for better detecting SAP services

  Language:Python1247043

• chacka0101/exploits

  Exploits project Hacking Command Center

  Language:Shell442022

• akamai/cli-terraform

  Akamai CLI plugin Admin Support for multiple OpenAPI resource types

  Language:Go21192710

• obezuk/cf-worker-aws-fetch

  Language:JavaScript15303

• ianaraujo/idiv-dividend-analysis

  Análise das empresas do Índice de Dividendos da B3 (IDIV), estimativa do retorno aos acionistas, cálculo do DY nos últimos anos e preço-teto por ação.

  Language:Jupyter Notebook6404

• AfonsoFeliciano/Python-Web-Scraping-Status-Invest

  Coleta de dados de fundos imobiliários no site status invest

  Language:Jupyter Notebook2100