Merge e37aa24db1 into 30e4b0f405

feat: add new tool for cognito pentest, thx @cfpadok

.github/workflows/linkcheck.yml

@@ -0,0 +1,17 @@
+name: Link-check
+on:
+  schedule:
+    - cron: '0 0 * * 1'  # every monday
+  push:
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Run linksafe
+        uses: TechWiz-3/linksafe@fast
+        with:
+          whitelist_links: "http://www.clamav.net/,https://www.cipherdyne.org/fwknop/,http://bruteforce.gr/honeydrive,https://ossec.github.io/,https://www.hardenwindows10forsecurity.com/"
+        env:
+          TOKEN: ${{ secrets.TOKEN }}
+        

README.md

@@ -82,7 +82,7 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c
 - [Netz](https://github.com/spectralops/netz)- Discover internet-wide misconfigurations, using zgrab2 and others.
 - [Deepfence ThreatMapper](https://github.com/deepfence/ThreatMapper) - Apache v2, powerful runtime vulnerability scanner for kubernetes, virtual machines and serverless.
 - [Deepfence SecretScanner](https://github.com/deepfence/SecretScanner) - Find secrets and passwords in container images and file systems.
-
+- [Cognito Scanner](https://github.com/padok-team/cognito-scanner) - CLI tool to pentest Cognito AWS instance. It implements three attacks: unwanted account creation, account oracle and identity pool escalation
 
 ### Monitoring / Logging
 - [BoxyHQ](https://github.com/retracedhq/retraced) - Open source API for security and compliance audit logging.