Arsenal

Forensic tool for analyzing ransomware encryption schemes: identify algorithm, mode, key derivation, and find weaknesses.

$399.99

Blockchain transaction analysis tool: trace fund flow in Bitcoin/Ethereum, identify mixers and exchanges.

$549.99

Python script that analyzes AWS IAM policies and detects privilege escalation paths: AssumeRole chains, policy misconfigs, wildcard permissions.

$89.99

Tool that audits Kubernetes RBAC configurations: detects overprivileged roles, service accounts with mounted secrets, pod security violations.

$129.99

Password spraying tool against Azure AD/Entra ID with smart lockout evasion: IP rotation, intelligent timing, MFA detection.

$199.99

Collection of 6 Docker container escape techniques with working exploits: docker.sock, privileged mode, cap_sys_admin, cgroups.

$299.99

Static analyzer for Terraform configurations: detects open security groups, public buckets, disabled encryption, IAM misconfigs.

$49.99

Tool for exploiting SSRF against cloud metadata services: AWS IMDSv1/v2, GCP, Azure, DigitalOcean. Extracts temporary credentials.

$159.99

Scanner for public and misconfigured S3 buckets: wordlist enumeration, permission detection, selective download of sensitive content.

$34.99

Script that searches for GCP service account keys in repositories, buckets, and compromised filesystems. Validates and enumerates permissions.

$69.99

Techniques and scripts for compromising CI/CD pipelines: GitHub Actions injection, GitLab CI secrets extraction, Jenkins credential theft.

$249.99

Cloud firewall/security group rule analyzer for AWS, Azure, and GCP: detects permissive rules, unnecessary ports, generates hardening report.

$59.99