alexivkin / kubepwnLinks
Kubernetes Pwnage for all
☆56Updated 4 years ago
Alternatives and similar repositories for kubepwn
Users that are interested in kubepwn are comparing it to the libraries listed below
Sorting:
- A beginner-friendly CTF about Kubernetes security.☆80Updated 3 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆105Updated 6 years ago
- Kubernetes Easter CTF☆59Updated 5 years ago
- ☆27Updated this week
- ☆102Updated 8 months ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- ☆126Updated last year
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆89Updated 2 years ago
- ☆60Updated 2 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆17Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Jekyll Files for cloudsecwiki.com☆49Updated 4 years ago
- ☆51Updated 5 years ago
- ☆74Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆77Updated 5 years ago
- ☆28Updated 5 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆86Updated 6 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆85Updated last year
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- Tool for auditing RBACs in Kubernetes☆224Updated last year
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆113Updated 2 years ago
- Security scanning & static analysis tool☆94Updated 11 months ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆108Updated 5 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆72Updated 2 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆111Updated 4 years ago