Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/testrockytesting/awesome-cloud-osint
This repository will host resources for collecting information about cloud providers - SaaS, IaaS, PaaS, DaaS etc.
https://github.com/testrockytesting/awesome-cloud-osint
List: awesome-cloud-osint
assessment-tool awesome-list cloud osint-resources security security-tools
Last synced: 3 months ago
JSON representation
This repository will host resources for collecting information about cloud providers - SaaS, IaaS, PaaS, DaaS etc.
- Host: GitHub
- URL: https://github.com/testrockytesting/awesome-cloud-osint
- Owner: testrockytesting
- Created: 2018-11-21T23:31:03.000Z (almost 6 years ago)
- Default Branch: master
- Last Pushed: 2020-02-23T01:00:30.000Z (over 4 years ago)
- Last Synced: 2024-07-28T22:01:00.749Z (3 months ago)
- Topics: assessment-tool, awesome-list, cloud, osint-resources, security, security-tools
- Size: 10.7 KB
- Stars: 27
- Watchers: 3
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: readme.md
Awesome Lists containing this project
- awesome-security-collection - **8**星 - SaaS, IaaS, PaaS, DaaS etc. (<a id="8c5a692b5d26527ef346687e047c5c21"></a>收集)
README
# This is a curated list of resources for collecting information about cloud providers.
#### A presentation that covers the concept of Cloud OSINT and its application in third party cloud provider review https://docs.google.com/presentation/d/113N-x1ocz7xDS5rXcmhmTqDyv2to028yAzedJlKq1J8/edit?usp=sharing
### Asset discovery
Free | Commercial
---- | ----------
Shodan | BitDiscovery
Bluto | assetnote
SpiderFoot |
https://spyse.com/ |
### SSL and HTTP Security Headers analysis
Free | Commercial
---- | ---------
SSLScan |
htbridge |
HttpObservatory |
Testssl.sh|
### Mobile
Free | Commercial
-----| ----------
htbridge mobile| NowSecure Intel
vulners | Data Theorem
https://android.fallible.co/ |
https://androidobservatory.org/|
### Threat Hunting
Free | Commercial
-----| ----------
GreyNoise.io| Recorded Future
### Audit Reports
Free | Commercial
-----| ----------
CSA Star Registry| sharedassessments
### Vulnerability data
Free | Commercial
-----| ----------
OpenBugBounty|
PunkSPIDER |
Vulners |
https://scans.io/ |
### Company details
Free | Commercial
-----| ----------
Crunchbase|
### Code Search
Free | Commercial
-----| ----------
nerdydata|
https://publicwww.com/ |
### IP Reputation
Free | Commercial
-----| ----------
Cisco Talos|
### DNS Search
Free | Commercial
-----| ----------
DNSDumpster, Domaintools etc.| Cisco Umbrella
### Breach Information
Free | Commercial
-----| ----------
Google Search etc.| Recorded Future
### Cloud Access Security Broker
Free | Commercial
-----| ----------
-----| Cisco CloudLock, Skyhigh, Bitglass
### Third party risk measurement
Free | Commercial
-----| ----------
-----| Bitsight, securityscorecard
### Financial Viability
Free | Commercial
-----| ----------
-----| Dun & Bradstreet
### Content Security Policy Analysis
Free | Commercial
-----|-----------
https://csp-evaluator.withgoogle.com/ |
### Tech Stack Evaluation
Free | Commercial
-----| ----------
Wapplyzer | https://www.purplemet.com/
urlscan.io|
### TLS certificate and associated subdomain analysis
Free | Commercial
-----| ----------
censys.io|
https://transparencyreport.google.com/https/certificates |
### Test for IPv6, DNSSEC, DMARC etc. Modern Standards
Free | Commercial
-----| ----------
https://en.internet.nl |
### Open Buckets analysis
Free | Commercial
-----|------------
https://buckets.grayhatwarfare.com |
### SSH Analysis
Free | Commercial
-----|-----------
https://sshcheck.com |