payloadsallthethings

This is an offensive tool for AWS exploitation. The repository contains a collection of tools and scripts for testing the security of Amazon Web Services AWS environments. The tools include: Pacu: an AWS exploitation framework designed for testing the security of AWS environments Bucket Finder: a...

New Pacu Module: Secret Enumeration in Elastic Beanstalk

The post New Pacu Module: Secret Enumeration in Elastic Beanstalk appeared first on Rhino Security Labs...

Attacking AWS Cognito with Pacu (p1)

The post Attacking AWS Cognito with Pacu p1 appeared first on Rhino Security Labs...

Attacking AWS Cognito with Pacu (p2)

The post Attacking AWS Cognito with Pacu p2 appeared first on Rhino Security Labs...

SCARLETEEL Cryptojacking Campaign Exploiting AWS Fargate in Ongoing Campaign

Cloud environments continue to be at the receiving end of an ongoing advanced attack campaign dubbed SCARLETEEL, with the threat actors now setting their sights on Amazon Web Services AWS Fargate. "Cloud environments are still their primary target, but the tools and techniques used have adapted t...

IAM Vulnerable - Use Terraform To Create Your Own Vulnerable By Design AWS IAM Privilege Escalation Playground

Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground. IAM Vulnerable uses the Terraform binary and your AWS credentials to deploy over 250 IAM resources into your selected AWS account. Within minutes, you can start learning how to identify and exploit...

PayloadsAllTheThings

This repository is an offensive tool for API key and bucket S3 exploitation. It contains tools and exploits for various types of attacks, including CRLF injection, CSRF injection, and API key leaks. The repository includes a variety of scripts and modules for different types of attacks, such as...

Pacu: The Open Source AWS Exploitation Framework

The post Pacu: The Open Source AWS Exploitation Framework appeared first on Rhino Security Labs...