129 tools and resources
Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.
Reach out!
Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable fixes.
Show the history and changes between configuration versions of AWS resources
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
Automate actions on Security Command Center findings with automated disk snapshots, IAM grant revocation, and more.
A Python script that lists all main resources of your AWS account, helping you find resources that affect billing and/or security.
A CLI tool to simplify the use of AWS Systems Manager Session Manager
A tool to find S3 buckets from HTML, JS, and bucket misconfiguration testing
A Lambda Function that disables AWS IAM User Access Keys after a set amount of time to reduce the risk associated with old access keys.
Open-source policy-as-code software for multi-cloud and SaaS environments with GPT model conversations and custom analysis policies.
Conmachi is a Golang tool for scanning container environments for security issues.
A detection-as-code platform for streamlining cloud security operations and responding to security incidents.
A tool for discovering company infrastructure and apps on major cloud providers, beneficial for bug bounty hunters and penetration testers.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.
Lists AWS resources using the AWS Cloud Control API and writes them to a JSON output file.
Managed Kubernetes Inspection Tool leveraging FOSS tools to query and validate security-related settings.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
Cloud Custodian (c7n) is a rules engine for managing public cloud accounts and resources with a focus on security, compliance, and cost optimization.
AWS Scout2 is a security tool for AWS administrators to assess their environment's security posture.
Tool for assessing compliance and running vulnerability scans on Docker images.
Implements a cloud version of the Shadow Copy attack against domain controllers in AWS, allowing theft of domain user hashes.
