TrailBlazer Logo

TrailBlazer

0
Free
Updated 11 March 2025
Cloud Security
Aws
Cloudtrail
Attack Simulation
Visit Website

TrailBlazer is a tool written to determine what AWS API calls are logged by CloudTrail and what they are logged as. It can also be used as an attack simulation framework. It uses the python AWS SDK library called boto3 to make the API calls into AWS. It enumerates the services provided in the SDK, regions the services are available, and then determines what API calls there are for the given service by exploring the function set. It bypasses the boto3 client-side validation to make mostly improper requests into AWS. Mostly is the keyword here due to the fact that if an API call does not require a parameter, the API call sent by TrailBlazer will be 100% valid. Due to the way AWS logs, these requests will be logged as Invalid Parameters or Unauthorized due to the inconsistency in CloudTrail logging.

FEATURES

EXPLORE BY TAGS

Aws

Cloudtrail

Attack Simulation

SIMILAR TOOLS

Axiom Logo
Axiom

A dynamic infrastructure framework for efficient multi-cloud security operations and distributed scanning.

Free
Cloud Security
Real Sandbox Containers Logo
Real Sandbox Containers

Exploring the transition towards real sandbox containers and the differences in privileges compared to traditional sandboxes like Chrome.

Free
Cloud Security
AWS Security Hub Logo
AWS Security Hub

Automate AWS security checks and centralize security alerts.

Free
Cloud Security
minikube Logo
minikube

minikube implements a local Kubernetes cluster for easy application development and supports various Kubernetes features.

Free
Cloud Security
cfn-nag Logo
cfn-nag

A tool for identifying security issues in CloudFormation templates.

Free
Cloud Security
Kubeadm Logo
Kubeadm

Kubeadm is a tool for creating Kubernetes clusters with best practices.

Free
Cloud Security
Inspektor Gadget Logo
Inspektor Gadget

A collection of tools to debug and inspect Kubernetes resources and applications, managing eBPF programs execution and mapping kernel primitives to Kubernetes resources.

Free
Cloud Security
Ice Logo
Ice

Ice provides a birds-eye view of cloud resources and usage patterns in AWS.

Free
Cloud Security
Azucar Logo
Azucar

Azucar is a multi-threaded plugin-based tool for assessing Azure Cloud security.

Free
Cloud Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy