offsec.tools
A vast collection of security tools for bug bounty, pentest and red teaming
#cloud
67 results





GCPBucketBrute
Enumerate Google Storage buckets, check the access and if they can be privilege escalated.





Vajra
UI-based tool with multiple techniques for attacking and enumerating Azure and AWS environment.

Offensive-Azure
Collection of offensive tools targeting Microsoft Azure written in Python to be platform agnostic.








Oculus
OSINT tool used to discover environments, directories, and subdomains of a particular domain.






















S3 Objects Check
Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.



Burp-AnonymousCloud
Performs passive scan to identify buckets and test them for publicly accessible vulnerabilities.



mass-s3-bucket-tester
Tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable.



















