4ARMED / kubeletmein
Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
☆162Updated last year
Alternatives and similar repositories for kubeletmein:
Users that are interested in kubeletmein are comparing it to the libraries listed below
- ☆93Updated last month
- Kubernetes focused container assessment and context discovery tool for penetration testing☆453Updated 9 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆343Updated last year
- Kubernetes Easter CTF☆58Updated 4 years ago
- ☆237Updated 6 months ago
- Tool for auditing RBACs in Kubernetes☆215Updated last year
- Dynamic Application and API Security Testing☆192Updated last year
- Kubernetes Pwnage for all☆56Updated 4 years ago
- A security monitoring solution for Kubernetes☆131Updated last year
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- ☆25Updated 10 months ago
- book website☆67Updated 3 years ago
- Links and resources for the O'Reilly Kubernetes Security book☆98Updated 4 years ago
- Runtime security plug to protect user containers☆65Updated last month
- A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.☆77Updated 5 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆94Updated 4 years ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- ☆27Updated 4 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆36Updated 11 months ago
- ☆124Updated 8 months ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Updated 5 years ago
- Kubolt utility for scanning public kubernetes clusters☆109Updated 9 months ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆55Updated 2 weeks ago
- Kubernetes Common Configuration Scoring System☆124Updated 2 years ago
- Trivy's misconfiguration scanning engine☆218Updated last month
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆115Updated last week
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week