stratus-red-team
Awesome-Azure-Pentest
stratus-red-team | Awesome-Azure-Pentest | |
---|---|---|
8 | 3 | |
1,621 | 941 | |
1.5% | - | |
8.7 | 0.0 | |
14 days ago | 4 months ago | |
Go | ||
Apache License 2.0 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
stratus-red-team
-
Azure PenTesting tools
Stratus: https://stratus-red-team.cloud/
- Stratus Red team
- Stratus Red Team: Granular, Actionable Adversary Emulation for the Cloud
- GitHub - DataDog/stratus-red-team: Granular, Actionable Adversary Emulation for the Cloud.
- "Stratus Red Team", an open-source adversary emulation tool for the cloud
- DataDog/stratus-red-team: Granular, Actionable Adversary Emulation for the Cloud. Stratus Red Team is "Atomic Red Team™" for the cloud, allowing to emulate offensive attack techniques in a granular and self-contained manner.
- "Stratus Red Team": open-source adversary emulation for AWS
Awesome-Azure-Pentest
- LEETSSS GO. 820 on AZ-900!!! Check link fo
-
Azure PenTesting tools
I need to curate the most extensive list of Azure PenTesting tools I can. Most are already covered in this (as far as I can tell) fantastic list: https://github.com/Kyuu-Ji/Awesome-Azure-Pentest. I'd just add:
-
What are the best pen testing tools used for Microsoft 365?
This looks like a good list: https://github.com/Kyuu-Ji/Awesome-Azure-Pentest
What are some alternatives?
harp - Secret management by contract toolchain
basicblobfinder - Identify Azure blobs using a wordlist of account name and container name strings
sgCheckup - sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
AD-Attack-Defense - Attack and defend active directory using modern post exploitation adversary tradecraft activity
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. [Moved to: https://github.com/accurics/terrascan]
iamzero - Identity & Access Management simplified and secure.
Pulumi - Pulumi - Infrastructure as Code in any programming language. Build infrastructure intuitively on any cloud using familiar languages 🚀
granted - The easiest way to access your cloud.
KubeHound - Kubernetes Attack Graph
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
threatest - Threatest is a CLI and Go framework for end-to-end testing threat detection rules.