kmcquade
Founder/CTO @nvsecurity. I build security testing tools, mostly around AppSec, CloudSec, and AWS. Author of Cloudsplaining and Endgame.
NightVision Securityus-east-1
Pinned Repositories
endgame
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈
awesome-azure-security
A curated list of awesome Microsoft Azure Security tools, guides, blogs, and other resources.
aws-security-scripts
Some python scripts I wrote that help with various specialized AWS security things
conftest-terraform-multifolder-policies
Example of how to write OPA rules with conftest in a modular fashion for Terraform 0.12 plans.
OWASP-YouTube-2021
Deliberately vulnerable AWS resources for security assessment demos
terraform-aws-policy-sentry
Terraform module for Policy Sentry.
cloud-guardrails
Rapidly apply hundreds of security controls in Azure
cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
policy_sentry
IAM Least Privilege Policy Generator
kmcquade's Repositories
kmcquade/aws-security-scripts
Some python scripts I wrote that help with various specialized AWS security things
kmcquade/enumerate-iam
Enumerate the permissions associated with AWS credential set
kmcquade/cloudtracker
CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
kmcquade/terraform-aws-cartography-demo
Demo Infrastructure for Lyft's Cartography tool
kmcquade/azucar
Security auditing tool for Azure environments
kmcquade/opa-terraform-exceptions-example
Demo of YAML-based exceptions for OPA policies on Terraform plans.
kmcquade/python-security-tool-boilerplate
Boilerplate code for Python based security assessment tools that generate single file HTML reports.
kmcquade/docker-cartography
Dockerizing Lyft's cartography. Publishing this repository to get support from the OGs
kmcquade/sleep-number-alarm
Raise the Sleep Number bed at a wakeup time set from my Jenkins running on Raspberry pi
kmcquade/tinytoken
A command line tool to generate temporary security credentials via OpenID Connect federation with AWS Cognito IDP.
kmcquade/alphalens
Performance analysis of predictive (alpha) stock factors
kmcquade/ansible-role-systemd-template
GitHub template for writing Ansible roles to install Systemd service
kmcquade/asciinema-testing
kmcquade/cartography
Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
kmcquade/cognito-user-shell
Shell/CLI with AWS Cognito authentication
kmcquade/conftest-hcl-no-variable-expansion
Demo repository for use in a GitHub issue on conftest.
kmcquade/docusaurus-tutorial
kmcquade/dvna
Damn Vulnerable NodeJS Application
kmcquade/InlineChunkHtmlPlugin
copy from create-react-app
kmcquade/markdown-to-confluence
Syncs Markdown files to Confluence
kmcquade/NoomNotes
Notes from things I learn on Noom
kmcquade/one-click-hugo-cms
kmcquade/policy_sentry_python_examples
Examples of using Policy Sentry as a python library.
kmcquade/pyfolio
Portfolio and risk analytics in Python
kmcquade/regula
Regula checks Terraform for AWS and GCP security and compliance using Open Policy Agent/Rego
kmcquade/sapper-template
kmcquade/sleepyq
SleepIQ API for Python
kmcquade/terraform-aws-scps
kmcquade/tf-parliament
kmcquade/vuecli-python-demo
WIP. Building out a more sustainable way of managing the Cloudsplaining UI