• Stars
    star
    37
  • Rank 720,807 (Top 15 %)
  • Language
  • License
    BSD 3-Clause "New...
  • Created over 6 years ago
  • Updated over 6 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.

More Repositories

1

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Python
4,339
star
2

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Python
2,923
star
3

Security-Research

Exploits written by the Rhino Security Labs team
Python
1,057
star
4

AWS-IAM-Privilege-Escalation

A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
894
star
5

IPRotate_Burp_Extension

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
Python
809
star
6

CVEs

A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
Python
793
star
7

ccat

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
Python
586
star
8

GCPBucketBrute

A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
Python
478
star
9

SleuthQL

Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
Python
464
star
10

Cloud-Security-Research

Cloud-related research releases from the Rhino Security Labs team.
Python
353
star
11

GCP-IAM-Privilege-Escalation

A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
Python
336
star
12

Swagger-EZ

A tool geared towards pentesting APIs using OpenAPI definitions.
JavaScript
169
star
13

IAMActionHunter

An AWS IAM policy statement parser and query tool.
Python
154
star
14

Aggressor-Scripts

Aggregation of Cobalt Strike's aggressor scripts.
PowerShell
144
star
15

dsnap

Utility for downloading and mounting EBS snapshots using the EBS Direct API's
Python
73
star
16

little-stitch

Send and receive bypassing Little Snitch alerting.
Go
10
star