TrailBlazer Logo

TrailBlazer

0
Free
Visit Website

TrailBlazer is a tool written to determine what AWS API calls are logged by CloudTrail and what they are logged as. It can also be used as an attack simulation framework. It uses the python AWS SDK library called boto3 to make the API calls into AWS. It enumerates the services provided in the SDK, regions the services are available, and then determines what API calls there are for the given service by exploring the function set. It bypasses the boto3 client-side validation to make mostly improper requests into AWS. Mostly is the keyword here due to the fact that if an API call does not require a parameter, the API call sent by TrailBlazer will be 100% valid. Due to the way AWS logs, these requests will be logged as Invalid Parameters or Unauthorized due to the inconsistency in CloudTrail logging.

FEATURES

ALTERNATIVES

Export Kubernetes events for observability and alerting purposes with flexible routing options.

An open-sourced framework for managing resources across hundreds of AWS Accounts

Collection of Kubernetes manifests creating pods with elevated privileges for security testing.

Managed Kubernetes Inspection Tool leveraging FOSS tools to query and validate security-related settings.

Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.

Open-source cloud-agnostic resource manager for analyzing and managing cloud cost, usage, security, and governance.

Automated script for creating a vulnerable Azure cloud lab to train offensive security skills.

A collection of security workshops and hands-on content for AWS security services and techniques

PINNED