Esonhugh/k8spider

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Esonhugh/k8spider)

Esonhugh / k8spider

Powerful+Fast+Low Privilege Kubernetes discovery tools

☆265

Alternatives and similar repositories for k8spider

Users that are interested in k8spider are comparing it to the libraries listed below

Sorting:

Esonhugh / ingressNightmare-CVE-2025-1974-exps
View on GitHub
IngressNightmare POC. world first non-blind remote execution exploitation with multi-advanced exploitation methods. allow on disk exploit…
☆92May 6, 2025Updated 10 months ago
wgpsec / EndpointSearch
View on GitHub
EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate end…
☆78Nov 8, 2024Updated last year
nccgroup / kubetcd
View on GitHub
Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
☆92May 7, 2024Updated last year
wgpsec / lc
View on GitHub
LC（List Cloud）是一个多云攻击面资产梳理工具
☆635Oct 6, 2024Updated last year
wgpsec / cloudsword
View on GitHub
一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具
☆595Feb 3, 2026Updated last month
Esonhugh / KubernetesCS
View on GitHub
Kubernetes has its “ADCS” -- How To Backdoor a Kubernetes in silence and more persistent?
☆41Nov 16, 2025Updated 3 months ago
Esonhugh / My-Cloud-Security
View on GitHub
[ALL IN ONE] Everything that I shared to public about Cloud Security is here.
☆60Apr 19, 2025Updated 10 months ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,467Apr 25, 2024Updated last year
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,157Aug 21, 2025Updated 6 months ago
whocansee / FilelessAgentMemShell
View on GitHub
无需文件落地Agent内存马生成器
☆249May 30, 2024Updated last year
lemono0 / FastJsonParty
View on GitHub
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
☆1,186Jul 12, 2024Updated last year
wyzxxz / aksk_tool
View on GitHub
AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
☆779Feb 13, 2025Updated last year
l3yx / jdwp-codeifier
View on GitHub
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本（动态执行Java/Js代码并获得回显）
☆321Dec 22, 2024Updated last year
Whoopsunix / JavaRce
View on GitHub
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆544Mar 6, 2025Updated last year
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆288Nov 20, 2023Updated 2 years ago
yulate / jdbc-tricks
View on GitHub
《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…
☆571Feb 7, 2026Updated last month
TheKingOfDuck / RCEFuzzer
View on GitHub
一个以fuzz为中心思想的被动扫描工具
☆160Dec 26, 2023Updated 2 years ago
Esonhugh / KubernetesCRInjection
View on GitHub
Here is a common vulnerability when Kubernetes Controller designed.
☆10Dec 11, 2023Updated 2 years ago
tarihub / blackjump
View on GitHub
JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021
☆272Jun 6, 2025Updated 9 months ago
mabangde / NTDSDumpEx
View on GitHub
☆36Mar 4, 2025Updated last year
Whoopsunix / utf-8-overlong-encoding
View on GitHub
抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
☆140Mar 11, 2024Updated last year
wjlab / Darksteel
View on GitHub
域内自动化信息搜集利用工具
☆468Oct 24, 2023Updated 2 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆438May 22, 2025Updated 9 months ago
zema1 / suo5
View on GitHub
高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
☆2,675Feb 2, 2026Updated last month
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,344Updated this week
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆461Jan 12, 2025Updated last year
VMsec / PortBenderEXE
View on GitHub
PortBender修改为exe版本
☆29Jul 24, 2023Updated 2 years ago
Whoopsunix / PPPYSO
View on GitHub
proof-of-concept for generating Java deserialization payload | Proxy MemShell
☆221Jun 8, 2024Updated last year
evilashz / PigScheduleTask
View on GitHub
添加计划任务方法集合
☆309Aug 6, 2023Updated 2 years ago
vulhub / java-chains
View on GitHub
Java Vulnerability Exploitation Platform
☆1,993Jan 6, 2026Updated 2 months ago
BeichenDream / GodzillaMemoryShellProject
View on GitHub
☆308Feb 27, 2025Updated last year
Ar3h / utf8-overlong-agent
View on GitHub
使用 agent 实现反序列化 utf8 overlong
☆83Apr 24, 2024Updated last year
lintstar / SharpHunter
View on GitHub
Automated Hosting Information Hunting Tool - Windows 主机信息自动化狩猎工具
☆550Apr 15, 2025Updated 10 months ago
Ridter / PySQLTools
View on GitHub
Mssql利用工具
☆276Aug 7, 2023Updated 2 years ago
rmb122 / rogue_mysql_server
View on GitHub
A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
☆755Dec 2, 2022Updated 3 years ago
decoder-it / ADCSCoercePotato
View on GitHub
☆242May 5, 2024Updated last year
SpringKill-team / CodeAuditAssistant
View on GitHub
🔍 CodeAuditAssistant - IDEA代码审计插件（公测中） ⚡ 精准追踪复杂调用链 | 🚀 毫秒级方法搜索 | 🔥 内置高危漏洞检测原生集成 | 反编译/路径分析 | 内存优化 | 安全审计利器 🔍 Co…
☆774Aug 3, 2025Updated 7 months ago
cckuailong / JNDI-Injection-Exploit-Plus
View on GitHub
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
☆870Jun 24, 2024Updated last year
W01fh4cker / CVE-2024-22120-RCE
View on GitHub
Time Based SQL Injection in Zabbix Server Audit Log --> RCE
☆131May 21, 2024Updated last year