gchib297's Stars
randorisec/workshops
randorisec/talks
Security conferences talks
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
MobSF/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
prowler-cloud/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
dafthack/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
WithSecureLabs/awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
RhinoSecurityLabs/cloudgoat
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
duo-labs/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
sa7mon/S3Scanner
Scan for misconfigured S3 buckets across S3-compatible APIs!
appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!