alexivkin / kubepwnLinks
Kubernetes Pwnage for all
☆57Updated 4 years ago
Alternatives and similar repositories for kubepwn
Users that are interested in kubepwn are comparing it to the libraries listed below
Sorting:
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- A beginner-friendly CTF about Kubernetes security.☆78Updated 2 years ago
- ☆27Updated last month
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆108Updated 5 years ago
- Kubernetes Easter CTF☆59Updated 4 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated 2 weeks ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆28Updated 4 years ago
- ☆57Updated 2 years ago
- ☆98Updated 4 months ago
- ☆127Updated 11 months ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- Scan DockerHub images that match a keyword to find secrets.☆59Updated 4 years ago
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆133Updated 2 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆17Updated 4 years ago
- ☆41Updated last month
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆23Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago
- OWASP Kubernetes Security Testing Guide☆38Updated 9 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- ☆50Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- OWASP Foundation Web Respository☆35Updated 9 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Protect against subdomain takeover☆92Updated last year