kpawloski

kpawloski's Stars

• aws-samples/data-perimeter-policy-examples

  Example policies demonstrating how to implement a data perimeter on AWS.

  15123

• SummitRoute/aws_breaking_changes

  List of changes announced for AWS that may break existing code

  1.5k50

• WithSecureLabs/IAMGraph

  Language:Python431

• robchahin/sso-wall-of-shame

  A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.

  Language:JavaScript733325

• ipinfo/cli

  Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)

  Language:Go1.8k158

• salesforce/aws-allowlister

  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.

  Language:Python22534

• dmuth/aws-s3-server-access-logging-rollup

  A Python script to perform regular rollup of AWS S3 Server Access Logs

  Language:Python83

• aws-samples/aws-secure-environment-accelerator

  The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.

  Language:HTML740235

• someengineering/fixinventory

  Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

  Language:Python1.8k100

• zusorio/GoodTwitter

  Language:JavaScript948

• priyankavergadia/google-cloud-4-words

  The Google Cloud Developer's Cheat Sheet

  8.1k1.9k

• usingnamespace/pyramid_authsanity

  An auth policy for the Pyramid Web Framework with sane defaults.

  Language:Python146

• getsops/sops

  Simple and flexible tool for managing secrets

  Language:Go18k914

• duo-labs/cloudmapper

  CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

  Language:JavaScript6.1k824

• Netflix/security_monkey

  Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

  Language:Python4.4k791

• SpecterOps/BloodHound-Legacy

  Six Degrees of Domain Admin

  Language:PowerShell10.1k1.8k

• commixproject/commix

  Automated All-in-One OS Command Injection Exploitation Tool.

  Language:Python5.2k864

• jvoisin/php-malware-finder

  Detect potentially malicious PHP files

  Language:PHP1.5k284

• elceef/dnstwist

  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

  Language:Python5.1k793

• carmaa/inception

  Inception is a physical memory manipulation and hacking tool exploiting PCI-based DMA. The tool can attack over FireWire, Thunderbolt, ExpressCard, PC Card and any other PCI/PCIe interfaces.

  Language:Python1.6k198

• gentilkiwi/mimikatz

  A little tool to play with Windows security

  Language:C19.9k3.8k

• ossec/ossec-hids

  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

  Language:C4.7k1.1k

• mothran/tlslite

  TLS Library in python

  Language:Python224

• wpscanteam/wpscan

  WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

  Language:Ruby8.9k1.3k

• sqlmapproject/sqlmap

  Automatic SQL injection and database takeover tool

  Language:Python33.6k5.8k

• PowerShellMafia/PowerSploit

  PowerSploit - A PowerShell Post-Exploitation Framework

  Language:PowerShell12.2k4.7k

• lucab/ntop

  Language:C1711