Pacu is an open source exploitation framework code for AWS, designed for security testing in a cloud environment.
Created by Rhino Security Labs, it allows pentesters to exploit exploit configuration flaws in an AWS account, using modules for ease of use.
Its current modules allow a number of attacks, such as privilege escalation, backdooring by IAM users, attacks on vulnerable Lambda functions and more.
Basic features
- Full security-testing toolkit for AWS, backed by a leading cyber security company.
- Wide range of powerful capabilities scanning and exploitation offered by 36 units (and counting) * and can be connected together.
- It is open source where allows for easy control and improvement of its community
Installation
git clone https://github.com/RhinoSecurityLabs/pacu
> cd pacu
> bash install.sh
> python3 pacu.py
More information about the program, you will find here.