#aws



Trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, repositories...


Ghostbuster
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.


AWS Sensitive Permissions
This script enumerates the permissions of all the AWS principals of an account.





Vajra
UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.







Oculus
OSINT tool used to discover environments, directories, and subdomains of a particular domain.




















mass-s3-bucket-tester
Tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable.



Burp-AnonymousCloud
Performs passive scan to identify buckets and test them for publicly accessible vulnerabilities.



S3 Objects Check
Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.




















