SkyWrapper is an open-source project that analyzes behaviors of temporary tokens in an AWS account to detect suspicious creation forms and uses, creating an excel sheet of all living temporary tokens and providing a summary of findings after each run. To use SkyWrapper, fill in the required data in the config file, ensure users have necessary permissions, and run the python script. Required permissions include actions like s3:GetObject and iam:ListAttachedRolePolicies.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Conmachi is a Golang tool for scanning container environments for security issues.
Open source multi-cloud security-auditing tool for assessing security posture of cloud environments.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
A cloud native application protection platform that provides security monitoring and protection across cloud, on-premises, and hybrid environments.
A free training course and lab environment for learning to test and attack cloud infrastructure, including AWS and Azure.
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices with a focus on Identity and Access Management.
A collection of tools for forensics teams to collect evidence from cloud platforms
A tool to find S3 buckets from HTML, JS, and bucket misconfiguration testing
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.