Abusing DNSAdmins privilege for escalation in Active Directory
Dufflebag is a tool that searches through public Elastic Block Storage (EBS) snapshots for secrets that may have been accidentally left in. It is organized as an Elastic Beanstalk application, designed to be used within an AWS environment due to the complexity of reading EBS volumes. The tool automagically scales and can be easily torn down, but requires additional AWS IAM permissions to function properly.
Abusing DNSAdmins privilege for escalation in Active Directory
Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.
Repository documenting common techniques to bypass AppLocker with verified, unverified, and generic bypasses.
CLI for generating AWS IAM policy documents, SAM policy templates or SAM Connectors
Identify AWS IAM permissions by brute-forcing API calls.
Open-source universal secret manager for developers with seamless integration to various cloud services and vaults.