XDU-SysSec / ExcessivePermissionAttackLinks
Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
☆17Updated last year
Alternatives and similar repositories for ExcessivePermissionAttack
Users that are interested in ExcessivePermissionAttack are comparing it to the libraries listed below
Sorting:
- A penetration toolkit for container environment☆91Updated 2 weeks ago
- Cloud Native Security News☆64Updated 7 months ago
- ☆63Updated last week
- SecCodeBench is a benchmark suite focusing on evaluating the security of code generated by large language models (LLMs).☆53Updated this week
- ☆25Updated 3 years ago
- awesome resources about cloud native security 🐿☆321Updated last year
- ☆173Updated 3 weeks ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆178Updated 10 months ago
- ☆26Updated last year
- 一个搜索网络安全领域顶会论文的小工具☆88Updated 2 weeks ago
- ☆171Updated 2 years ago
- CVE-2022-0847 used to achieve container escape 利用CVE-2022-0847 (Dirty Pipe) 实现容器逃逸☆33Updated 3 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆52Updated 2 years ago
- 一个辅助提交 CNVD/CNNVD/CVE 漏洞的工具☆19Updated 3 years ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆185Updated 2 years ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- 容器安全漏洞的分析与复现☆159Updated last year
- ☆52Updated 4 months ago
- ☆39Updated 2 years ago
- ☆18Updated 2 years ago
- 《深入理解SAST静态应用安全测试》Static Application Security Testing.☆346Updated last year
- A grey-box web application Fuzzer☆23Updated 11 months ago
- ☆27Updated 3 years ago
- ☆21Updated 3 years ago
- ☆42Updated 2 years ago
- ☆14Updated 2 years ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 2 years ago
- CodeQL zero to hero blog post series challenges☆135Updated last month
- The container escape challenge of Be A RWCTFer competition (https://be-a-rwctfer.realworldctf.com/)☆61Updated 4 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆337Updated last year