Pacu Logo

Pacu

0
Free
Visit Website

Pacu is an open-source AWS exploitation framework, designed for offensive security testing against cloud environments. Created and maintained by Rhino Security Labs, Pacu allows penetration testers to exploit configuration flaws within an AWS account, using modules to easily expand its functionality. Current modules enable a range of attacks, including user privilege escalation, backdooring of IAM users, attacking vulnerable Lambda functions, and much more. Installation: Pacu is a fairly lightweight program, as it requires only Python3.7+ and pip3 to install a handful of Python libraries.

FEATURES

ALTERNATIVES

Customize Empire's GET request URIs, user agent, and headers for evading detection and masquerading as other applications.

A cross-platform web fuzzer written in Nim

A specification/framework for extending default C2 communication channels in Cobalt Strike

Weaponizing Kerberos protocol flaws for stealthy attacks on domain users.

A collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite.

Alpha release of External C2 framework for Cobalt Strike with enhanced data channels.

A C#-based Command and Control Framework for remote access and control of compromised systems.

Automatic tool for DNS rebinding-based SSRF attacks