Links
Knowledge bases
Section titled “Knowledge bases”- https://cloudseclist.com/past-issues/
- https://hackingthe.cloud/
- https://cloudsecdocs.com/
- https://cloudsecwiki.com/index.html
- https://github.com/cyberark/SkyArk
- https://github.com/redcanaryco/invoke-atomicredteam
- https://github.com/redcanaryco/atomic-red-team
- https://github.com/ustayready/fireprox
- https://attack.mitre.org/techniques/enterprise/
- https://env.fail
- https://aws-samples.github.io/threat-technique-catalog-for-aws/
- https://www.cyberark.com/resources/hybrid-and-multi-cloud-security
- https://github.com/RhinoSecurityLabs/pacu
- https://rhinosecuritylabs.com/aws/pacu-open-source-aws-exploitation-framework/
- https://github.com/nccgroup/ScoutSuite
- https://github.com/dirkjanm/ROADtools
- https://github.com/Azure/Stormspotter
- https://github.com/SpecterOps/AzureHound
- https://github.com/carlospolop/PurplePanda
- https://github.com/BishopFox/cloudfox
- https://bishopfox.com/blog/introducing-cloudfox
- https://github.com/turbot/steampipe
- https://github.com/RhinoSecurityLabs/GCPBucketBrute
- https://github.com/hotnops/apeman
- https://dirkjanm.io/
- https://github.com/ine-labs/AWSGoat
- https://pathfinding.cloud/
- https://stratus-red-team.cloud/
- https://github.com/carnal0wnage/weirdAAL
- https://github.com/nccgroup/ScoutSuite
- https://github.com/dowjones/hammer
- https://github.com/Netflix/security_monkey
- https://github.com/duo-labs/cloudmapper
- https://github.com/ovotech/gitoops
- https://github.com/RhinoSecurityLabs/pacu
- https://github.com/sa7mon/S3Scanner
- https://github.com/Netspi/Microburst
- https://github.com/cyberark/SkyArk
- https://github.com/RhinoSecurityLabs/GCP-IAM-Privilege-Escalation
- https://github.com/nccgroup/PMapper
- https://powerzure.readthedocs.io/en/latest/
- https://github.com/hausec/PowerZure