SkyArk is a cloud security project with two main scanning modules: AzureStealth - Scans Azure environments and AWStealth - Scans AWS environments. These scanning modules aim to discover the most privileged entities in the target AWS and Azure environments. SkyArk focuses on mitigating the threat of Cloud Shadow Admins by helping organizations discover, assess, and protect cloud privileged entities, ensuring that they are well secured.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Cloud Security Suite (cs-suite) - Version 3.0 Usage for cloud security audits on AWS, GCP, Azure, and DigitalOcean.
A framework to analyze container images and gather useful information.
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
Discover and understand the Docker Layer 2 ICC Bug and its implications on inter-container communication.
Automated script for creating a vulnerable Azure cloud lab to train offensive security skills.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
S3Scanner scans for misconfigured S3 buckets across S3-compatible APIs, identifying potential security vulnerabilities and data exposure risks.
Kube-bench is a tool for checking Kubernetes security based on CIS Kubernetes Benchmark.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.