antitree / keyctl-unmask
Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.
☆43Updated last year
Alternatives and similar repositories for keyctl-unmask:
Users that are interested in keyctl-unmask are comparing it to the libraries listed below
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- egrets monitors egress☆45Updated 4 years ago
- Kubernetes Unhinged Shell 😎☆45Updated 2 years ago
- ☆28Updated 4 years ago
- The SSH Multiplex Backdoor Tool☆63Updated 5 years ago
- ☆27Updated 4 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆106Updated 5 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- Kubernetes Easter CTF☆58Updated 4 years ago
- Provide a shell like interface by utilizing osquery's distributed API☆81Updated 4 years ago
- ☆25Updated 10 months ago
- Tool to examine the behaviour of setuid binaries under constrained limits.☆62Updated 4 years ago
- Ed is a tool used to identify and exploit accessible UNIX Domain Sockets☆27Updated 6 years ago
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Updated 5 years ago
- ☆29Updated 2 months ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆162Updated last year
- ☆53Updated this week
- 🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.☆45Updated 7 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- Testing/collecting some container breakouts☆93Updated 5 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆62Updated 3 years ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- K8s API Honeypot with Active Defense Capabilities☆40Updated last year
- Keyhack - Golang API token/webhook validator☆16Updated last week
- Docker Secure Computing Profile Generator☆48Updated 3 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- Proof of Concept exploit for Kubernetes CVE-2020-8559☆20Updated 4 years ago