bondijois's Stars
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
noisetorch/NoiseTorch
Real-time microphone noise suppression on Linux.
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
NullArray/AutoSploit
Automated Mass Exploiter
cloudtools/troposphere
troposphere - Python library to create AWS CloudFormation descriptions
ory/keto
The most scalable and customizable permission server on the market. Fix your slow or broken permission system with Google's proven "Zanzibar" approach. Supports ACL, RBAC, and more. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters.
OTRF/ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
tailwarden/komiser
Open-source cloud-environment inspector. Supporting AWS, GCP, Azure, and more! Your cloud resources will have nowhere to hide!
spacecloud-io/space-cloud
Open source Firebase + Heroku to develop, scale and secure serverless apps on Kubernetes
RhinoSecurityLabs/cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
sinwindie/OSINT
Collections of tools and methods created to aid in OSINT collection
Voorivex/pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
aws/aws-eks-best-practices
A best practices guide for day 2 operations, including operational excellence, security, reliability, performance efficiency, and cost optimization.
Azure/Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
kudobuilder/kudo
Kubernetes Universal Declarative Operator (KUDO)
vchinnipilli/kubestriker
A Blazing fast Security Auditing tool for Kubernetes
WithSecureLabs/awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
BishopFox/iam-vulnerable
Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
swimlane/pyattck
A Python package to interact with the Mitre ATT&CK Framework
righettod/poc-graphql
Research on GraphQL from an AppSec point of view.
jmpsec/osctrl
Fast and efficient osquery management
TROUBLE-1/Cloud-Pentesting
This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.
mykter/aws-security-cert-service-notes
Security aspects of AWS products for the Security Specialist certification
opendevsecops/guide-aws-hacking
This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaknesses you will be verse enough to provide the correct countermeasures.
redteam-project/red-container
Containerized pentesting tools
turbot/steampipe-plugin-shodan
Use SQL to instantly query host, DNS and exploit information using Shodan. Open source CLI. No DB required.
tilakthimmappa/pyraider
Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.
houey/aws-security-analytics-bootstrap
AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena analysis environment that's quick to deploy, ready to use, and easy to maintain.
sharathkramadas/go-tutor
abhaybhargav/tpass
Powerful but simple Password Manager that leverages SSH keys - Written in Go