Pacu
Rhino Security Labs offensive AWS testing framework: modules for privilege escalation, persistence, data exfiltration, and service-specific attacks.
Why it is included
Standard open companion for authorized AWS assessments when you need more than static policy scanners.
Best for
Red teams and cloud pentesters with signed scope on AWS accounts or labs.
Strengths
- Modular attacks
- AWS-focused depth
- Active module set
Limitations
- Illegal and unethical outside explicit written authorization
Good alternatives
Prowler (defensive) · ScoutSuite · manual CLI
Related tools
Security & Privacy
Prowler
Open cloud security assessment for AWS, Azure, GCP, and M365: CIS, PCI, HIPAA-style checks and compliance reports.
Security & Privacy
ScoutSuite
Multi-cloud security auditing: AWS, Azure, GCP, Alibaba—HTML reports highlighting misconfigurations and risky resources.
Security & Privacy
Metasploit Framework
Modular exploitation framework with payloads, encoders, auxiliaries, and integration points for exploit development.
Security & Privacy
Cloudsplaining
Analyzes AWS IAM policies for dangerous privileges, resource exposure, and data-exfiltration patterns—outputs Markdown/HTML reports.
Security & Privacy
OWASP ZAP
OWASP flagship web app scanner and proxy: automated checks, manual request tampering, scripting, and CI integrations.
Security & Privacy
sqlmap
Automatic SQL injection and database takeover helper with fingerprinting, data exfiltration, and OS-shell paths.