Tag

AzureHound is a BloodHound data collector for Microsoft Azure, enabling security professionals to map attack paths in Azure environments.

CloudFox helps penetration testers find exploitable attack paths in cloud infrastructure, currently supporting AWS with more on the way.

CloudQuery provides a developer-first cloud governance platform for security, compliance, and cost visibility across multi-cloud environments.

CloudSploit by Aqua scans cloud infrastructure for security risks, supporting AWS, Azure, GCP, OCI, and GitHub.

AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.

MicroBurst is a PowerShell toolkit for assessing Microsoft Azure security, including discovery, auditing, and post-exploitation actions.

Pacu is an AWS exploitation framework for offensive security testing of Amazon Web Services environments.

Prowler is an open-source cloud security tool empowering cloud engineers with customizable security checks across AWS, Azure, GCP, and Kubernetes.

ROADtools is a framework for Azure AD security, offering tools for offensive and defensive purposes, including ROADrecon and roadtx.

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

ScoutSuite: Multi-cloud security auditing tool for AWS, Azure, and GCP. Gathers configuration data and highlights risk areas.

Truffle Security provides open-source and enterprise solutions for detecting and remediating leaked keys and credentials across the SDLC.