wilcosec

wilcosec

About Me

attack_range

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

Awesome-CloudSec-Labs

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

aws-adfs

Command line tool to ease aws cli authentication against ADFS (multi factor authentication with active directory)

aws-cf-templates

Free Templates for AWS CloudFormation

aws-cloudformation-templates

A collection of useful CloudFormation templates

aws-marketplace-data

Crowdsourced Information on AWS Marketplace Products

aws_pwn

A collection of AWS penetration testing junk

cfn-identity-provider

A trivially simple stack to create an AWS IAM SAML provider via CloudFormation

cfnresponse

Send a response object to a custom resource by way of an Amazon S3 presigned URL

cloudgoat

Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool

data-driven-web-apps-with-flask

Course demo code and other hand-out materials for our data driven web apps in Flask course

endgame

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

Extract-Account-ID-from-Access-Key

Do you have an AWS Access Key, but don't know what account it goes to?

FlipperAmiibo

Made to be used with Flipper just drag the folder into NFC

forge-utah-k8s-meetup-sigstore

Demo of Sigstore Cosign

hindsight

Internet history forensics for Google Chrome/Chromium

IPOsint

Discovery IP Address of the target

known_aws_accounts

List of known AWS accounts

kubernetes-examples

Kubernetes application example tutorials

munin

Online hash checker for Virustotal and other services

npk

A mostly-serverless distributed hash cracking platform

prowler

AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+90). Official CIS for AWS guide: https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf

python-practice

A python training course with emphasis on self teaching and practice.

saintcon-container-village

SAINTCON2019

ScoutSuite

Multi-Cloud Security Auditing Tool

Serverless-Goat

OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws

tryhackme-writeups

Casual write-ups and notes from TryHackMe rooms

web-services-training