Token Security

Commercial

IAM

Iam

Cloud Security

Identity And Access Management

Cloud

Automation

Security Automation

Visit WebsiteVisit Website

Token Security is a cloud-based identity security platform that focuses on managing non-human identities (NHI) in cloud environments. The platform operates through three main functions: 1. Discovery and inventory of all machine identities, credentials, and entitlements across cloud infrastructure 2. Continuous monitoring and risk assessment of identity exposure, including detection of stale, local, unfederated, or shadow identities 3. Lifecycle management of machine identities, including credential rotation, access reviews, and deactivation of unused accounts The solution is agentless and performs automated scanning and log analysis to maintain visibility of machine identities across cloud resources, including kubernetes clusters, databases, servers, and containers.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

Aaia

A tool for visualizing AWS IAM and Organizations in a graph format with Neo4j, supporting anomaly detection and custom data processing.

Free

IAM

PowerUp

PowerUp aims to be a clearinghouse of common Windows privilege escalation vectors that rely on misconfigurations.

Free

IAM

Ultimate AppLocker Bypass List

Repository documenting common techniques to bypass AppLocker with verified, unverified, and generic bypasses.

Free

IAM

CloudTracker

CloudTracker helps identify over-privileged IAM users and roles by analyzing CloudTrail logs.

Free

IAM

Teller

Open-source universal secret manager for developers with seamless integration to various cloud services and vaults.

Free

IAM

Lab of a Penetration Tester: Abusing DNSAdmins privilege for escalation in Active Directory

Abusing DNSAdmins privilege for escalation in Active Directory

Free

IAM

Confidant

A secret keeper that stores secrets in DynamoDB, encrypted at rest.

Free

IAM

AD Build Script

A fully automated AD build script that configures a domain fully with adjustable XML files.

Free

IAM

PINNED

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Resources

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security

Check Point CloudGuard WAF

A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Application Security

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Cloud Security