averonesis / kuboltLinks
Kubolt utility for scanning public kubernetes clusters
☆110Updated 2 months ago
Alternatives and similar repositories for kubolt
Users that are interested in kubolt are comparing it to the libraries listed below
Sorting:
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 6 years ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆108Updated 5 years ago
- Finding exposed secrets and personal data in GitLab☆199Updated 9 months ago
- PoC for CVE-2018-1002105.☆223Updated 6 years ago
- A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform☆165Updated 11 months ago
- ☆27Updated this week
- A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.☆78Updated 5 years ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆111Updated 5 years ago
- Python automation of Docker.sock abuse☆212Updated 2 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆160Updated last year
- ☆50Updated 6 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆97Updated 4 years ago
- This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability☆54Updated 5 years ago
- Kubernetes Easter CTF☆59Updated 5 years ago
- A tool for automatically gathering sensitive information from exposed Jenkins servers☆104Updated 2 years ago
- Burp Extension for AWS Signing☆89Updated 7 months ago
- Docker image to exploit RCE, try for pentest methods and test container security solutions (trivy, falco and etc.)☆90Updated 4 years ago
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- A lab to play with authentication and authorisation problems☆96Updated 2 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- CVE-2017-9506 - SSRF☆189Updated 3 years ago
- Burp as a Docker Container☆59Updated 5 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 5 years ago
- Burp with Friends☆103Updated 2 years ago
- vulnerable single sign on☆148Updated last year
- JWT Attack to change the algorithm RS256 to HS256☆34Updated 2 years ago
- A beginner-friendly CTF about Kubernetes security.☆78Updated 3 years ago
- A collection of scripts, and tips and tricks for hacking k8s clusters and containers.☆135Updated 10 months ago
- Monitoring for leaks of sensitive information in git repositories☆43Updated last year