alexivkin / kubepwn
Kubernetes Pwnage for all
☆54Updated 3 years ago
Related projects: ⓘ
- Slides, Cheatsheet and Resources from our Blackhat EU talk☆38Updated 4 years ago
- ☆27Updated 2 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- A beginner-friendly CTF about Kubernetes security.☆76Updated 2 years ago
- Kubernetes Easter CTF☆58Updated 4 years ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆106Updated 4 years ago
- ☆58Updated last year
- Research on the enumeration of IAM permissions without logging to CloudTrail☆60Updated 3 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆132Updated 4 years ago
- ☆90Updated 4 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- Jekyll Files for cloudsecwiki.com☆49Updated 3 years ago
- ☆125Updated 2 months ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆78Updated 7 months ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- OWASP Kubernetes Security Testing Guide☆37Updated 2 weeks ago
- Serverless Workshop☆16Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- ☆28Updated 4 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆57Updated 11 months ago
- PoC for gaining persistency on vulnerable Lambdas☆30Updated 3 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.