oodog0126's repositories
AirIAM
Least privilege AWS IAM Terraformer
aksk_tool
AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS管理,RDS/DB管理,域名管理,添加RAM/CAM/IAM账号等
awesome-detection-engineering
A list of useful Detection Engineering-related resources.
awesome-detection-rules
This is a collection of threat detection rules / rules engines that I have come across.
awesome-selfhosted
A list of Free Software network services and web applications which can be hosted on your own servers
aws-config-rules
[Node, Python, Java] Repository of sample Custom Rules for AWS Config.
aws-customer-security-incidents
A repository of breaches of AWS customers
aws-guardduty-runbook-generator
Generates runbooks for GuardDuty findings
aws-pentesting-lab
Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet
cf
Cloud Exploitation Framework 云环境利用框架,方便安全人员在获得 AK 的后续工作
cloudtrail-cli
Blazing fast single purpose cli for CloudTrail log filtering
codon
A high-performance, zero-overhead, extensible Python compiler using LLVM
csvGPT
csvGPT is an web app tool that enables users to upload CSV files, visualize the data, and have interactive conversations with an AI model.
curl-impersonate
curl-impersonate: A special build of curl that can impersonate Chrome & Firefox
cw-logs-insights-gpt
Chrome extension that generates CloudWatch Logs Insights queries from ChatGPT prompts
dufflebag
Search exposed EBS volumes for secrets
msticpy
Microsoft Threat Intelligence Security Tools
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
peirates
Peirates - Kubernetes Penetration Testing tool
py2gpt
ChatGPT 背後的數學與程式
sandbox-accounts-for-events
"Sandbox Accounts for Events" allows to provide multiple, temporary AWS accounts to a number of authenticated users simultaneously via a browser-based GUI.
security-rules
Magpie security rules for AWS and GCP security configurations with policies mapping those rules to standards such as AWS CIS Benchmarks, PCI and HIPAA.
semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
sshscript
System Automation in Python
Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
waf-bypass
Check your WAF before an attacker does
whatismyip
Just another "what is my IP address" service, including geolocation and headers information. Written in go with high performance in mind.