A collection of manifests that will create pods with elevated privileges.
☆687Dec 30, 2025Updated 2 months ago
Alternatives and similar repositories for badPods
Users that are interested in badPods are comparing it to the libraries listed below
Sorting:
- Peirates - Kubernetes Penetration Testing tool☆1,425Jan 20, 2026Updated last month
- A client for kubelet☆876Aug 6, 2025Updated 6 months ago
- Kubernetes focused container assessment and context discovery tool for penetration testing☆475Nov 7, 2025Updated 3 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆550Sep 11, 2025Updated 5 months ago
- Automating situational awareness for cloud penetration tests.☆2,299Updated this week
- Tool for auditing RBACs in Kubernetes☆225Feb 5, 2024Updated 2 years ago
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,487Dec 21, 2025Updated 2 months ago
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,215Feb 3, 2025Updated last year
- Tool for building Kubernetes attack paths☆943Updated this week
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆613Mar 4, 2021Updated 5 years ago
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆5,427Nov 18, 2025Updated 3 months ago
- ☆270Jan 14, 2026Updated last month
- A curated list for Awesome Kubernetes Security resources☆1,992Feb 24, 2026Updated last week
- Kubernetes Security Training Platform - focusing on security mitigation☆978Sep 2, 2024Updated last year
- Granular, Actionable Adversary Emulation for the Cloud☆2,267Updated this week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆350Mar 21, 2025Updated 11 months ago
- Hunt for security weaknesses in Kubernetes clusters☆5,005Mar 19, 2024Updated last year
- A tool to scan Kubernetes cluster for risky permissions☆1,412May 25, 2025Updated 9 months ago
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,530Feb 5, 2026Updated last month
- Container introspection tool. Find out what container runtime is being used as well as features available.☆1,073Dec 9, 2020Updated 5 years ago
- Identify privilege escalation paths within and across different clouds☆718Feb 6, 2026Updated 3 weeks ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆370Updated this week
- A Blazing fast Security Auditing tool for Kubernetes☆1,006Apr 6, 2024Updated last year
- Adversary Emulation Framework☆10,759Updated this week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆88Jan 28, 2024Updated 2 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,080Feb 24, 2026Updated last week
- 🧰 Multi Tool Kubernetes Pentest Image☆254Sep 1, 2025Updated 6 months ago
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,202Jul 14, 2024Updated last year
- Security risk analysis for Kubernetes resources☆1,441Feb 16, 2026Updated 2 weeks ago
- ☆51Jun 13, 2024Updated last year
- Azure Security Resources and Notes☆1,713Feb 17, 2026Updated 2 weeks ago
- ☆86Feb 4, 2026Updated last month
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆114Jan 14, 2019Updated 7 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,874Aug 18, 2023Updated 2 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,803Sep 17, 2024Updated last year
- Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀☆1,128Oct 21, 2024Updated last year
- Red Team K8S Adversary Emulation Based on kubectl☆826May 28, 2021Updated 4 years ago
- Multi-Cloud Security Auditing Tool☆7,551Sep 23, 2025Updated 5 months ago
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆931Nov 11, 2024Updated last year