Mirrors/PayloadsAllTheThings
6
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2024-07-23 03:16:09 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #320 from lanjelot/cloudsplaining

Browse Source 
New cloudsplaining tool to AWS Pentest page
This commit is contained in:
Swissky 2021-01-12 13:42:36 +01:00 committed by GitHub
commit 836861c86e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
Methodology and Resources/Cloud - AWS Pentest.md
View File

@ -149,6 +149,13 @@
$ python s3-objects-check.py -p whitebox-profile -e blackbox-profile
```
* [cloudsplaining](https://github.com/salesforce/cloudsplaining) - An AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report
```powershell
$ pip3 install --user cloudsplaining
$ cloudsplaining download --profile myawsprofile
$ cloudsplaining scan --input-file default.json
```
* [weirdAAL](https://github.com/carnal0wnage/weirdAAL/wiki) - AWS Attack Library
```powershell
python3 weirdAAL.py -m ec2_describe_instances -t demo