Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/testrockytesting/awesome-cloud-osint
This repository will host resources for collecting information about cloud providers - SaaS, IaaS, PaaS, DaaS etc.
https://github.com/testrockytesting/awesome-cloud-osint
List: awesome-cloud-osint
assessment-tool awesome-list cloud osint-resources security security-tools
Last synced: 24 days ago
JSON representation
This repository will host resources for collecting information about cloud providers - SaaS, IaaS, PaaS, DaaS etc.
- Host: GitHub
- URL: https://github.com/testrockytesting/awesome-cloud-osint
- Owner: testrockytesting
- Created: 2018-11-21T23:31:03.000Z (about 6 years ago)
- Default Branch: master
- Last Pushed: 2020-02-23T01:00:30.000Z (almost 5 years ago)
- Last Synced: 2024-11-14T06:03:18.526Z (28 days ago)
- Topics: assessment-tool, awesome-list, cloud, osint-resources, security, security-tools
- Size: 10.7 KB
- Stars: 27
- Watchers: 3
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: readme.md
Awesome Lists containing this project
- awesome-security-collection - **8**星 - SaaS, IaaS, PaaS, DaaS etc. (<a id="8c5a692b5d26527ef346687e047c5c21"></a>收集)
README
# This is a curated list of resources for collecting information about cloud providers.
#### A presentation that covers the concept of Cloud OSINT and its application in third party cloud provider review https://docs.google.com/presentation/d/113N-x1ocz7xDS5rXcmhmTqDyv2to028yAzedJlKq1J8/edit?usp=sharing
### Asset discovery
Free | Commercial
---- | ----------
Shodan | BitDiscovery
Bluto | assetnote
SpiderFoot |
https://spyse.com/ |### SSL and HTTP Security Headers analysis
Free | Commercial
---- | ---------
SSLScan |
htbridge |
HttpObservatory |
Testssl.sh|### Mobile
Free | Commercial
-----| ----------
htbridge mobile| NowSecure Intel
vulners | Data Theorem
https://android.fallible.co/ |
https://androidobservatory.org/|### Threat Hunting
Free | Commercial
-----| ----------
GreyNoise.io| Recorded Future### Audit Reports
Free | Commercial
-----| ----------
CSA Star Registry| sharedassessments### Vulnerability data
Free | Commercial
-----| ----------
OpenBugBounty|
PunkSPIDER |
Vulners |
https://scans.io/ |### Company details
Free | Commercial
-----| ----------
Crunchbase|### Code Search
Free | Commercial
-----| ----------
nerdydata|
https://publicwww.com/ |### IP Reputation
Free | Commercial
-----| ----------
Cisco Talos|### DNS Search
Free | Commercial
-----| ----------
DNSDumpster, Domaintools etc.| Cisco Umbrella### Breach Information
Free | Commercial
-----| ----------
Google Search etc.| Recorded Future### Cloud Access Security Broker
Free | Commercial
-----| ----------
-----| Cisco CloudLock, Skyhigh, Bitglass### Third party risk measurement
Free | Commercial
-----| ----------
-----| Bitsight, securityscorecard### Financial Viability
Free | Commercial
-----| ----------
-----| Dun & Bradstreet### Content Security Policy Analysis
Free | Commercial
-----|-----------
https://csp-evaluator.withgoogle.com/ |### Tech Stack Evaluation
Free | Commercial
-----| ----------
Wapplyzer | https://www.purplemet.com/
urlscan.io|### TLS certificate and associated subdomain analysis
Free | Commercial
-----| ----------
censys.io|
https://transparencyreport.google.com/https/certificates |### Test for IPv6, DNSSEC, DMARC etc. Modern Standards
Free | Commercial
-----| ----------
https://en.internet.nl |### Open Buckets analysis
Free | Commercial
-----|------------
https://buckets.grayhatwarfare.com |### SSH Analysis
Free | Commercial
-----|-----------
https://sshcheck.com |