An alarming aspect of the entire incident is that vpnMentor contacted both 21 Buttons and Amazon but no one responded nor cared...
Pray.com applied poor security potentially exposing nearly 10 million users to frauds and cyberattacks, claim VpnMentor’s researchers. VpnMentor research team led by...
Leonidas is a framework for executing attacker actions in the cloud. It provides a YAML-based format for defining cloud attacker tactics,...
The list of online booking sites affected by the breach includes some of the top industry giants including Booking.com. A Barcelona,...
Takeover AWS ips and have a working POC for Subdomain Takeover. Idea is simple Get subdomains. Do reverse lookups to only...
Script that allows the easy creation of OpenVPN endpoints in any AWS region. To create a VPN endpoint is done with...
SpaceSiren is a honey token manager and alert system for AWS. With this fully serverless application, you can create and manage...
Sudhish Kasaba Ramesh, an Indian citizen on an H1-B visa has pleaded guilty to “Damaging Cisco’s Network.” Employee malcontent can lead to...
A multi-threaded AWS inventory collection tool. The creators of this tool have a recurring need to be able to efficiently collect...
Dagobah is an open source tool written in python to automate the internal threat intelligence generation, inventory collection and compliance check...
Bastillion is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution...
AWS Report is a tool for analyzing amazon resources. Install using PIP pip install awsreport Features Search IAM users based on...
It is still unclear who owned the misconfigured Amazon S3 bucket. Running out of introductions for reporting on something that happens...
SkyArk is a cloud security project with two main scanning modules: AzureStealth – Scans Azure environments AWStealth – Scan AWS environments...
In addition to the cyber security firm, the 343GB worth of leaked data belongs to universities, an insurance firm, non-profit, and public...
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized HTML report. Example...
All 5 apps were exposing user data due to database misconfiguration. The IT researchers at WizCase recently discovered data leaks and privacy...
OpenVPN is open-source commercial software that implements virtual private network techniques to create secure point-to-point or site-to-site connections in routed or...
The DDoS attack on the bank was mitigated by Akamai. Recently, Hackread.com reported how AWS Shield mitigated the largest ever recorded DDoS...
The app in the discussion is the Aspire News App which, among other data, also leaked victims’ voice recordings asking for help...
The DDoS attack was mitigated by AWS Shield DDoS protection service. Last year, Amazon Web Service (AWS) suffered a DDoS attack that...