Cognito Scanner
A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation. This repository contains a script which implements three different attacks on Cognito: * Unwanted account creation * Account Oracle * Identity pool escalation Purpose of this repository Cognito is a AWS service which provides a secure and scalable user authentication and access control for web and mobile applications. Parameters needed from AWS? Only the Client ID protected by the Cognito instance.
FEATURES
ALTERNATIVES
A technology lookup and lead generation tool that identifies the technology stack of any website and provides features for market research, competitor analysis, and data enrichment.
A tool for building and installing PhoneyC with optional Python version configuration and root privileges.
OpenRASP directly integrates its protection engine into the application server by instrumentation, providing context-aware protection and detailed stack trace logging.
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
A honeypot trap for Symfony2 forms to reduce spam submissions.
A lightweight web security auditing toolkit that simplifies security tasks and enhances productivity.
SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.