| cloudfox |
- Helps gaining situational awareness in unfamiliar cloud environments and finding exploitable attack paths
- Introducing: CloudFox
|
| ScoutSuite |
- Multi-cloud security auditing tool
- Permissions:
SecurityAudit - Usage:
$ python Scout.py --provider aws
|
| Prowler |
- CIS benchmarks and additional checks for security best practices in AWS
- Permissions:
SecurityAudit - Usage:
$ ./prowler -M html - See also aws-security-assessment-solution: an AWS tool to help you create a point in time assessment of your AWS account using Prowler and Scout as well as optional AWS developed ransomware checks
|
| CS-Suite |
- Auditing the security posture of AWS/GCP/Azure infrastructure
- Permissions:
SecurityAudit - Usage:
$ python cs.py -env aws
|
| CloudSploit |
- Security scanning checks
- Permissions:
SecurityAudit - Usage:
// Edit the index.js file with your AWS key and secret// Run a standard scan
$ node index.js// Run a compliance scan
$ node index.js --compliance=hipaa
|
| Cloudsplaining |
- Scans accounts for violations of Least Privilege and identifies policies that can lead to Privilege Escalation, Data Exfiltration, Resource Exposure, and Infrastructure Modification
|
| cloudlist |
- Obtain public assets (hostnames, IPs)
|
| Aerides |
|