Not The Hidden Wiki
- cloudmapper: analyze your Amazon Web Services (AWS) environments. - link
- cloudsplaining: AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report. - link
- awscli: Command-line interface for Amazon Web Services. - link
- LazyS3: A Ruby script to bruteforce for AWS s3 buckets using different permutations. - link
- Scan for misconfigured S3 buckets across S3-compatible APIs! - link
- Security Tool to Look For Interesting Files in S3 Buckets - link
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. - link
- RKMS: RKMS is a highly available key management service, built on top of AWS's KMS. - link
- FireProx: AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation. - link
- AWS IAM privileges as found using the AWS Policy Generator described at - link
- barq: The AWS Cloud Post Exploitation framework! - link
- Bucky: An automatic S3 bucket discovery tool. - link
- Prowler is a security tool to perform AWS security best practices assessments, audits, incident response etc - link
- Pacu AWS exploitation framework - link
- Tool to quickly evaluate IAM permissions in AWS - link
- AWS service enumeration and info dumping - link
- Performs security and configuration scans on cloud infrastructure accounts, supporting providers like AWS, Azure, and GCP. - link
- Multi-cloud security auditing tool, which enables security posture assessment of cloud environments. - link