Dufflebag Logo

Dufflebag

0
Free
1 saves
Updated 11 March 2025
IAM
Aws
Aws Config
Aws Security
Cloud Security
Cloud Compliance
Cloud Native
Cloud Security
Visit Website

Dufflebag is a tool that searches through public Elastic Block Storage (EBS) snapshots for secrets that may have been accidentally left in. It is organized as an Elastic Beanstalk application, designed to be used within an AWS environment due to the complexity of reading EBS volumes. The tool automagically scales and can be easily torn down, but requires additional AWS IAM permissions to function properly.

FEATURES

EXPLORE BY TAGS

Aws

Aws Config

Aws Security

Cloud Security

Cloud Compliance

Cloud Native

Cloud Security

SIMILAR TOOLS

Admin Free Active Directory and Windows Logo
Admin Free Active Directory and Windows

This article discusses protected accounts and groups in Active Directory, providing examples and screenshots to illustrate key concepts.

Free
IAM
ConsoleMe Logo
ConsoleMe

A web service for easier AWS IAM permissions and credential management with various login methods and IAM Self-Service Wizard.

Free
IAM
Repokid Logo
Repokid

Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.

Free
IAM
password_compat Logo
password_compat

A library for forward compatibility with PHP password functions.

Free
IAM
Clutch Security Logo
Clutch Security

A platform that discovers, manages and secures non-human identities like service accounts, API keys and secrets across enterprise environments.

Commercial
IAM
Enumerate IAM Permissions Logo
Enumerate IAM Permissions

Identify AWS IAM permissions by brute-forcing API calls.

Free
IAM
DumpsterDiver Logo
DumpsterDiver

DumpsterDiver is a tool for analyzing big volumes of data to find hardcoded secrets like keys and passwords.

Free
IAM
AirIAM Logo
AirIAM

AirIAM is an AWS IAM to least privilege Terraform execution framework that compiles AWS IAM usage and leverages that data to create a least-privilege IAM Terraform.

Free
IAM
CyberArk Logo
CyberArk

CyberArk is an identity security platform that secures human and machine identities through privileged access management, secrets management, and intelligent privilege controls across on-premises, hybrid, and cloud environments.

Commercial
IAM

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy