{"id":21400560,"url":"https://github.com/cybersecurityup/awesome-cloud-pentest","last_synced_at":"2026-01-25T08:31:03.132Z","repository":{"id":37643039,"uuid":"381128950","full_name":"CyberSecurityUP/Awesome-Cloud-PenTest","owner":"CyberSecurityUP","description":null,"archived":false,"fork":false,"pushed_at":"2022-08-26T23:01:47.000Z","size":201,"stargazers_count":748,"open_issues_count":0,"forks_count":194,"subscribers_count":25,"default_branch":"main","last_synced_at":"2025-11-05T03:02:51.932Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/CyberSecurityUP.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-06-28T18:37:41.000Z","updated_at":"2025-10-19T23:08:12.000Z","dependencies_parsed_at":"2022-07-12T16:42:07.808Z","dependency_job_id":null,"html_url":"https://github.com/CyberSecurityUP/Awesome-Cloud-PenTest","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/CyberSecurityUP/Awesome-Cloud-PenTest","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CyberSecurityUP%2FAwesome-Cloud-PenTest","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CyberSecurityUP%2FAwesome-Cloud-PenTest/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CyberSecurityUP%2FAwesome-Cloud-PenTest/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CyberSecurityUP%2FAwesome-Cloud-PenTest/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CyberSecurityUP","download_url":"https://codeload.github.com/CyberSecurityUP/Awesome-Cloud-PenTest/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CyberSecurityUP%2FAwesome-Cloud-PenTest/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28749284,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-25T07:58:02.558Z","status":"ssl_error","status_checked_at":"2026-01-25T07:57:57.153Z","response_time":113,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-22T15:23:01.312Z","updated_at":"2026-01-25T08:31:03.117Z","avatar_url":"https://github.com/CyberSecurityUP.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Awesome-Cloud-PenTest\n\n## Cloud PenTest - AWS and Azure by Joas\n\n## What is AWS\n\n- https://docs.aws.amazon.com/\n\n- https://github.com/awsdocs\n\n## Extras Resources\n\n- https://github.com/enaqx/awesome-pentest\n\n- https://www.sans.org/cyber-security-courses/cloud-penetration-testing/\n\n- https://www.udemy.com/course/cloud-hacking/\n\n- https://aws.amazon.com/pt/security/penetration-testing/\n\n- https://cloudacademy.com/course/aws-security-fundamentals/introduction-74/\n\n- https://cobalt.io/blog/what-you-need-to-know-about-aws-pentesting\n\n- https://gracefulsecurity.com/an-introduction-to-penetration-testing-aws-same-same-but-different/\n\n- https://www.virtuesecurity.com/aws-penetration-testing-part-2-s3-iam-ec2/\n\n- https://securityboulevard.com/2021/03/aws-penetration-testing-essential-guidance-for-2021/\n\n- https://www.darkskope.com/aws-penetration-testing\n\n- https://bootcamps.pentesteracademy.com/certifications\n\n- https://docs.microsoft.com/pt-br/azure/security/fundamentals/pen-testing\n\n- https://www.youtube.com/watch?v=lOhvIooWzOg\n\n- https://gbhackers.com/cloud-computing-penetration-testing-checklist-important-considerations/\n\n- https://www.linkedin.com/pulse/cloud-computing-penetration-testing-checklist-priya-james-ceh-1/\n\n- https://www.happiestminds.com/blogs/tag/penetration-testing-checklist/\n\n- https://blog.rsisecurity.com/how-to-conduct-cloud-penetration-testing/\n\n- https://www.nettitude.com/uk/penetration-testing/cloud-service-testing/\n\n- https://techbeacon.com/enterprise-it/pen-testing-cloud-based-apps-step-step-guide\n\n- https://book.hacktricks.xyz/cloud-security/cloud-security-review\n\n- https://medium.com/@jonathanchelmus/cloud-pentesting-for-noobs-da867d9c5ecb\n\n- https://pt.slideshare.net/TeriRadichel/are-you-ready-for-a-cloud-pentest\n\n- https://www.blackhillsinfosec.com/tag/pentest/\n\n- https://www.youtube.com/watch?v=aqumgrSBDM4\n\n- My ebook: https://drive.google.com/file/d/14rthHtAgbd--pWEmzmj4i5j59Rl6dLC1/view?usp=sharing\n\n- https://hackerassociate.com/training-and-certification/ocpt-offensive-cloud-penetration-testing/\n\n- https://ine.com/pages/cloudpentesting\n\n- https://hausec.com/2020/01/31/attacking-azure-azure-ad-and-introducing-powerzure/\n\n- https://gracefulsecurity.com/an-introduction-to-pentesting-azure/\n\n- https://rhinosecuritylabs.com/cloud-security/common-azure-security-vulnerabilities/\n\n## My Social Networks\n\n- https://www.linkedin.com/in/joas-antonio-dos-santos\n\n- https://twitter.com/C0d3Cr4zy\n\n## What is Azure\n\n- https://docs.microsoft.com/pt-br/azure/?product=featured\n\n- https://github.com/MicrosoftDocs/azure-docs\n\n## PenTest Policy\n\n- https://docs.microsoft.com/en-us/azure/security/fundamentals/pen-testing\n\n- https://www.microsoft.com/en-us/msrc/pentest-rules-of-engagement?rtc=1\n\n- https://aws.amazon.com/pt/security/penetration-testing/\n\n- https://msrc.microsoft.com/en-us/engage/pentest\n\n## PenTest in AWS\n\n- Offensive Security\n\n- https://github.com/carnal0wnage/weirdAAL\t\n- https://github.com/RhinoSecurityLabs/pacu\t\n- https://github.com/disruptops/cred_scanner\t\n- https://github.com/dagrz/aws_pwn\t\n- https://github.com/MindPointGroup/cloudfrunt\t\n- https://github.com/prevade/cloudjack\t\n- https://github.com/andresriancho/nimbostratus\t\n- https://github.com/zricethezav/gitleaks\t\n- https://github.com/dxa4481/truffleHog\t\n- https://github.com/securing/DumpsterDiver\t\n- https://github.com/gruntwork-io/cloud-nuke\t\n- https://github.com/ThreatResponse/mad-king\t\n- https://github.com/mozilla/MozDef\t\n- https://github.com/puresec/lambda-proxy\t\n- https://github.com/Static-Flow/CloudCopy\t\n- https://github.com/andresriancho/enumerate-iam\t\n- https://github.com/Voulnet/barq\t\n- https://github.com/RhinoSecurityLabs/ccat\t\n- https://github.com/bishopfox/dufflebag\t\n- https://github.com/splunk/attack_range\t\n- https://github.com/elitest/Redboto\t\n- https://github.com/Skyscanner/whispers\t\n- https://github.com/0xsha/cloudbrute\t\n- https://github.com/Parasimpaticki/sandcastle\t\n- https://github.com/smiegles/mass3\t\n- https://github.com/koenrh/s3enum\t\n- https://github.com/tomdev/teh_s3_bucketeers\t\n- https://github.com/eth0izzle/bucket-stream\t\n- https://github.com/gwen001/s3-buckets-finder\t\n- https://github.com/aaparmeggiani/s3find\t\n- https://github.com/random-robbie/slurp\t\n- https://github.com/clario-tech/s3-inspector\t\n- https://github.com/pbnj/s3-fuzzer\t\n- https://github.com/jordanpotti/AWSBucketDump\t\n- https://github.com/bear/s3scan\t\n- https://github.com/sa7mon/S3Scanner\t\n- https://github.com/magisterquis/s3finder\t\n- https://github.com/abhn/S3Scan\t\n- https://github.com/whitfin/s3-meta\t\n- https://github.com/whitfin/s3-meta\t\n- https://github.com/vr00n/Amazon-Web-Shenanigans\t\n- https://github.com/FishermansEnemy/bucket_finder\t\n- https://github.com/brianwarehime/inSp3ctor\t\n- https://github.com/Atticuss/bucketcat\t\n- https://github.com/nahamsec/lazys3\t\n- https://github.com/Ucnt/aws-s3-data-finder\t\n- https://github.com/securing/BucketScanner\t\n- https://github.com/VirtueSecurity/aws-extender-cli\t\n- https://github.com/cr0hn/festin\t\n- https://github.com/kurmiashish/S3Insights\t\n- https://github.com/nccgroup/s3_objects_check\t\n- https://github.com/toniblyx/my-arsenal-of-aws-security-tools\n- https://rhinosecuritylabs.com/aws/aws-essentials-top-5-tests-penetration-testing-aws/\n- https://rhinosecuritylabs.com/aws/pacu-open-source-aws-exploitation-framework/\n- https://github.com/eth0izzle/shhgit\n- https://www.getastra.com/blog/security-audit/aws-penetration-testing/\n- https://owasp.org/www-pdf-archive/Aws_security_joel_leino.pdf\n- https://rhinosecuritylabs.com/penetration-testing/penetration-testing-aws-cloud-need-know/\n- https://github.com/PacktPublishing/Hands-On-AWS-Penetration-Testing-with-Kali-Linux\n- https://github.com/lamkeysing92/aws-pentest-inventory\n- https://github.com/dagrz/aws_pwn\n- https://github.com/appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training\n\n## AWS Security\n\n- Defensive: Hardening, Security Assessment and Inventory\n\n\n- https://github.com/nccgroup/ScoutSuite\t\n- https://github.com/toniblyx/prowler\t\n- https://github.com/cloudsploit/scans\t\n- https://github.com/duo-labs/cloudmapper\t\n- https://github.com/duo-labs/cloudtracker\t\n- https://github.com/awslabs/aws-security-benchmark\t\n- https://github.com/arkadiyt/aws_public_ips\t\n- https://github.com/nccgroup/PMapper\t\n- https://github.com/nccgroup/aws-inventory\t\n- https://github.com/disruptops/resource-counter\t\n- https://github.com/Teevity/ice\t\n- https://github.com/cyberark/SkyArk\t\n- https://github.com/willbengtson/trailblazer-aws\t\n- https://github.com/lateralblast/lunar\t\n- https://github.com/tensult/cloud-reports\t\n- https://github.com/tmobile/pacbot\t\n- https://github.com/SecurityFTW/cs-suite\t\n- https://github.com/te-papa/aws-key-disabler\t\n- https://github.com/turnerlabs/antiope\t\n- https://github.com/lyft/cartography\t\n- https://github.com/mlabouardy/komiser\t\n- https://github.com/darkarnium/perimeterator\t\n- https://github.com/DenizParlak/Zeus\t\n- https://github.com/darkbitio/aws-recon\t\n- https://github.com/mhlabs/iam-policies-cli\t\n- https://github.com/toniblyx/my-arsenal-of-aws-security-tools\n- https://github.com/jassics/awesome-aws-security\n\n- https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-cis.html\n\n## PenTest in Azure\n\n- Enumeration\n\n- o365creeper - Enumerate valid email addresses\n- CloudBrute - Tool to find a cloud infrastructure of a company on top Cloud providers\n- cloud_enum - Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud\n- Azucar - Security auditing tool for Azure environments\n- CrowdStrike Reporting Tool for Azure (CRT) - Query Azure AD/O365 tenants for hard to find permissions and configuration settings\n- ScoutSuite - Multi-cloud security auditing tool. Security posture assessment of different cloud environments.\n- BlobHunter - A tool for scanning Azure blob storage accounts for publicly opened blobs\n- Grayhat Warfare - Open Azure blobs and AWS bucket search\n\n- Information Gathering\n\n- o365recon - Information gathering with valid credentials to Azure\n- Get-MsolRolesAndMembers.ps1 - Retrieve list of roles and associated role members\n- ROADtools - Framework to interact with Azure AD\n- PowerZure - PowerShell framework to assess Azure security\n- Azurite - Enumeration and reconnaissance activities in the Microsoft Azure Cloud\n- Sparrow.ps1 - Helps to detect possible compromised accounts and applications in the Azure/M365 environment\n- Hawk - Powershell based tool for gathering information related to O365 intrusions and potential breaches\n- Microsoft Azure AD Assessment - Tooling for assessing an Azure AD tenant state and configuration\n\n- Lateral Movement\n\n- Stormspotter - Azure Red Team tool for graphing Azure and Azure Active Directory objects\n- AzureADLateralMovement - Lateral Movement graph for Azure Active Directory\n- SkyArk - Discover, assess and secure the most privileged entities in Azure and AWS\n\n- Exploitation\n\n- MicroBurst - A collection of scripts for assessing Microsoft Azure security\n- azuread_decrypt_msol_v2.ps1 - Decrypt Azure AD MSOL service account\n- Credential Attacks\n\n\t- MSOLSpray - A password spraying tool for Microsoft Online accounts (Azure/O365)\n\t- MFASweep - A tool for checking if MFA is enabled on multiple Microsoft Services Resources\n\t- adconnectdump - Dump Azure AD Connect credentials for Azure AD and Active Directory\n\n- Abusing Azure AD SSO with the Primary Refresh Token\n\n- Abusing dynamic groups in Azure AD for Privilege Escalation\n\n- Attacking Azure, Azure AD, and Introducing PowerZure\n\n- Attacking Azure \u0026 Azure AD, Part II\n\n- Azure AD Connect for Red Teamers\n\n- Azure AD Introduction for Red Teamers\n\n- Azure AD Pass The Certificate\n\n- Azure AD privilege escalation - Taking over default application permissions as Application Admin\n\n- Defense and Detection for Attacks Within Azure\n\n- Hunting Azure Admins for Vertical Escalation\n\n- Impersonating Office 365 Users With Mimikatz\n\n- Lateral Movement from Azure to On-Prem AD\n\n- Malicious Azure AD Application Registrations\n\n- Moving laterally between Azure AD joined machines\n\n- CrowdStrike Launches Free Tool to Identify and Help Mitigate Risks in Azure Active Directory\n\n- Privilege Escalation Vulnerability in Azure Functions\n\n- Azure Application Proxy C2\n\n- Recovering Plaintext Passwords from Azure Virtual Machines like It’s the 1990s\n\n- Azure Articles from NetSPI\n\n- Azure Cheat Sheet on CloudSecDocs\n\n- Resources about Azure from Cloudberry Engineering\n\n- Resources from PayloadsAllTheThings\n\n- Encyclopedia on Hacking the Cloud - (No content yet for Azure)\n\n- azure-security-lab - Securing Azure Infrastructure - Hands on Lab Guide\n\n- AzureSecurityLabs - Hands-on Security Labs focused on Azure IaaS Security\n\n- Building Free Active Directory Lab in Azure\n\n- https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Methodology%20and%20Resources/Cloud%20-%20Azure%20Pentest.md\n\n- https://github.com/MicrosoftDocs/azure-docs/blob/master/articles/security/fundamentals/pen-testing.md\n\n- https://github.com/swiftsolves-msft/AzurePenTestScope\n\n## Azure Security\n\n- https://github.com/LennonCMJ/pentest_script/blob/master/Azure_Testing.md\n\n- https://github.com/dafthack/CloudPentestCheatsheets\n\n- https://github.com/mattrotlevi/lava\n\n- https://github.com/Azure/Azure-Security-Center\n\n- https://github.com/kmcquade/awesome-azure-security\n\n- https://github.com/MicrosoftLearning/AZ-500-Azure-Security\n\n- https://github.com/Azure/Azure-Network-Security\n\n- https://github.com/MicrosoftDocs/SecurityBenchmarks\n\n- https://microsoftlearning.github.io/AZ500-AzureSecurityTechnologies/\n\n- https://www.cisecurity.org/benchmark/azure/\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcybersecurityup%2Fawesome-cloud-pentest","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcybersecurityup%2Fawesome-cloud-pentest","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcybersecurityup%2Fawesome-cloud-pentest/lists"}