Tools

ScoutSuite :

Open source multi-cloud security-auditing tool enables security posture assessment of cloud environments and Calle cloud configuration review.

pacu :

Open-source AWS exploitation framework, designed for offensive security testing against cloud environments.

Cloud_enum :

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

IAM_enumerate :

The tool used to Brute force AWS API calls allowed by the IAM policy

BF_AWS_Permissions :

Brute Force AWS Permissions

CloudGrappler :

It is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known threat actors in popular cloud environments such as AWS and Azure

Cloudsplaining :

AWS IAM Security Assessment tool that identifies violations of least privilege

PreviousAWS Common Misconfigurations & Associated Threats NextAbusing EC2 Instances

Last updated 1 year ago