Sadcloud Logo

Sadcloud

0
Free
Visit Website

Sadcloud is a tool for spinning up insecure AWS infrastructure with Terraform, supporting approximately 84 misconfigurations across 22 AWS Services. It was created to allow security researchers to misconfigure AWS for training purposes or assess AWS security tools, but it should not be run in production environments due to intentionally vulnerable configurations. Users are advised to set up a new AWS account to run this tool and to tear down all Terraform resources when not in use to minimize costs.

FEATURES

ALTERNATIVES

Export Kubernetes events for observability and alerting purposes with flexible routing options.

Anchore Enterprise is a platform that protects and secures software supply chains end-to-end.

Commercial

Cloud security platform that provides configuration monitoring, compliance management, and security analysis across multi-cloud environments.

Commercial

Ice provides a birds-eye view of cloud resources and usage patterns in AWS.

An open-sourced framework for managing resources across hundreds of AWS Accounts

CloudFox helps gain situational awareness in unfamiliar cloud environments for penetration testers and offensive security professionals.

A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.

DataCop is a custom AWS framework for mitigating S3 bucket attack vectors based on customer configuration.

PINNED