Vulnerability Scanners

Tools to exploit AWS.

Scout Suite

Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed by cloud providers, Scout Suite gathers configuration data for manual inspection and highlights risk areas. Rather than going through dozens of pages on the web consoles, Scout Suite presents a clear view of the attack surface automatically.

https://github.com/nccgroup/ScoutSuite

Pacu

Pacu is an open-source AWS exploitation framework that allows penetration testers to exploit configuration flaws within an AWS account, using modules to easily expand its functionality. Current modules enable a range of attacks, including user privilege escalation, backdooring of IAM users, attacking vulnerable Lambda functions, and much more.

https://github.com/RhinoSecurityLabs/pacu

PreviousAWS NextS3 Buckets

Last updated 4 months ago