Recent Category Tag Pricing Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

The Ultimate Directory for Offensive Security

Resources

Recent
Category

Home
Items
CloudFox

CloudFox

CloudFox helps penetration testers find exploitable attack paths in cloud infrastructure, currently supporting AWS with more on the way.

Visit Website Share on X

image of CloudFox

Introduction

Information

Publisher
Admin
Websitebishopfox.com
Created date03/31/2025
Published date03/31/2025

Categories

Cloud Security
Infrastructure Security

Tags

Cloud

More Resources

Listing

Pricing
FAQ
Submit

Pages

Home
Support
Sitemap
llms.txt

Company

About Us
Privacy Policy
Terms of Service

Copyright © 2026 All Rights Reserved.

image of PentAGI

AI SecurityApplication SecurityInfrastructure SecurityReconnaissance

PentAGI

Autonomous AI agent system for complex penetration testing, integrating security tools, long-term memory, and smart task delegation in sandboxed Docker.

AI OSINT Web Internal External

image of IronPE

Exploit DevelopmentInfrastructure SecurityRed Team Operations

IronPE

Rust-based Windows PE manual loader supporting x86/x64. Implements manual mapping, base relocations, and import resolution for memory-based execution.

image of Swarmer

Red Team OperationsInfrastructure Security

Swarmer

Convert registry exports into NTUSER.MAN hive files to stealthily inject HKCU keys without admin rights, bypassing EDR/AV registry API monitoring.

CloudFox is a command-line tool designed to aid penetration testers and offensive security professionals in identifying exploitable attack paths within cloud infrastructure.

Key features:

Automated Enumeration: Automates the enumeration process, similar to PowerView for cloud infrastructure.
Read-Only Operations: All commands are read-only, ensuring no state-changing operations are performed.
Inventory Command: Helps identify used regions and provides a rough size of the target account.
Grouped Checks: Groups similar requests together for efficient enumeration of service endpoints.
Loot File Creation: Generates usable loot files for input into other tools or for executing commands to investigate resources.
IAM Simulation: Determines who can perform specific actions, such as listing Lambda functions, to identify potential misconfigurations.

CloudFox - HackDB