Penetration Testing Tools

Tools for conducting security testing and penetration testing.

Tools

CloudBrute

CloudBrute

Penetration Testing Tools

Awesome cloud enumerator

Multi-Cloud
Open Source
Self Hosted Only
awspx

awspx

Penetration Testing Tools

Graph-based tool for visualizing effective access and resource relationships in AWS environments.

AWS
Open Source
Self Hosted Only
WeirdAAL

WeirdAAL

Penetration Testing Tools

WeirdAAL (AWS Attack Library) is a toolkit designed to assess and exploit potential vulnerabilities in AWS environments.

AWS
Open Source
Self Hosted Only
Cloud Container Attack Tool (CCAT)

Cloud Container Attack Tool (CCAT)

Penetration Testing Tools

A tool for testing security of container environments, particularly in cloud settings.

Multi-Cloud
Open Source
Self Hosted + Cloud Options
GCPBucketBrute

GCPBucketBrute

Penetration Testing Tools

A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.

GCP
Open Source
Self Hosted Only
SmogCloud

SmogCloud

Penetration Testing Tools

Find cloud assets that no one wants exposed

Multi-Cloud
Open Source
Self Hosted Only
AWS Consoler

AWS Consoler

Penetration Testing Tools

A utility to convert your AWS CLI credentials into AWS console access.

AWS
Open Source
Self Hosted Only
FestIn

FestIn

Penetration Testing Tools

FestIn - Open S3 Bucket Scanner

Multi-Cloud
Open Source
Self Hosted Only
Damn Vulnerable Web Application (DVWA)

Damn Vulnerable Web Application (DVWA)

Penetration Testing Tools

A PHP/MySQL web application designed for security professionals to practice and enhance their skills by exploiting common web vulnerabilities.

Multi-Cloud
Open Source
Self Hosted Only