• Stars
    star
    51
  • Rank 568,706 (Top 12 %)
  • Language
    Python
  • Created over 4 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Research on the enumeration of IAM permissions without logging to CloudTrail

More Repositories

1

CVE-2019-5736-PoC

PoC for CVE-2019-5736
Go
634
star
2

SneakyEndpoints

Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
HCL
73
star
3

CVE-2020-11108-PoC

PoCs for CVE-2020-11108; an RCE and priv esc in Pi-hole
Python
24
star
4

aws-api-models

A collection of documented and undocumented AWS API models
21
star
5

aws_api_shapeshifter

A small library to alter AWS API requests; Used for fuzzing research
Python
17
star
6

ssm-agent-research

This is a custom SSM agent which is sorta functional
Python
12
star
7

tools

A collection of pen-testing/hacking scripts. Various uses.
Python
12
star
8

gitlab-runner-research

Research on abusing GitLab Runners
Python
11
star
9

Specter

Specter is a prototype cryptocurrency developed to help people learn about Blockchain Technology.
Python
11
star
10

meltdown-spectre-poc

This is a combination of several different projects. It is intended to understand what the Meltdown and Spectre exploits are capable of.
C
7
star
11

FriendlyExitNode

The source/config of the Friendly Exit Node project.
HTML
5
star
12

selfhosted-shodan-gather

Side project to catalog various selfhosted services on the internet using Shodan; Gather metrics on usage over time
Python
5
star
13

enumate_iam_using_bucket_policy

Tool to enumerate IAM Users and Roles by Abusing S3 Bucket Policies
Python
3
star
14

Linux-From-Scratch

A repository holding everything I used to complete Linux From Scratch 8.2 (http://linuxfromscratch.org)
Shell
3
star
15

sigv4-signing-examples

Original SIGv4 Signing Examples
Python
3
star
16

deserialization_stuff

Research on deserialization attacks in Python and PHP
Python
3
star
17

easyPoll

A effective and simple polling tool for any environment
Java
2
star
18

SPA-Directory-Enumerator

Tool to perform directory enumeration of single page web applications
Python
2
star
19

WiFiReader

Identifies nearby WiFi signals
Java
1
star
20

aws_certified_solutions_architect_notes

Notes for AWS Certified Solutions Architect Studying
1
star
21

Image-Difference-Finder

A program to find the differences in "spot the differences" pictures
Java
1
star
22

GoEncryptTheCloud

Using Go, encrypt files and move them to the cloud (S3)
Go
1
star
23

aws-api-model-converter

Take undocumented APIs in the AWS Console and convert them to usable models for the AWS CLI.
1
star
24

Cut-Out-C2

Covert command and control system for Red-Team Operations
JavaScript
1
star
25

appID-2-acctID

Resolve an AWS Amplify App ID to AWS Account ID
Python
1
star
26

Bulldog-2-The-Reckoning

A vulnerable (on purpose) Node.js web application to teach about application security. A sequel to Bulldog.
TypeScript
1
star
27

Tor-Docker-Proxy

Another Tor installation in a Docker container.
1
star
28

Bulldog

The source code to a Vulnerable (on purpose) VM
HTML
1
star