blackberry / Falco-bypasses
Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
☆81Updated last year
Alternatives and similar repositories for Falco-bypasses:
Users that are interested in Falco-bypasses are comparing it to the libraries listed below
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆82Updated 4 months ago
- ☆96Updated 3 months ago
- ☆177Updated last week
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 3 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆79Updated last year
- ☆72Updated 3 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆230Updated 2 weeks ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆70Updated 2 years ago
- ☆21Updated 5 months ago
- boostsecurityio/lotp☆123Updated 3 weeks ago
- Kubernetes focused container assessment and context discovery tool for penetration testing☆454Updated 10 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- ☆25Updated last year
- Protect against subdomain takeover☆92Updated 11 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆280Updated 8 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆117Updated last year
- Kubernetes Pwnage for all☆57Updated 4 years ago
- Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …☆40Updated 2 years ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated last month
- ☆178Updated 2 weeks ago
- A repository to store Rad Fingerprinting data.☆24Updated 9 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆139Updated 4 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- A tool to uncover undocumented APIs from the AWS Console.☆102Updated this week
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆74Updated last year
- A tool for preventing the installation of malicious PyPI and npm packages☆140Updated this week
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- An AWS IAM policy statement parser and query tool.☆177Updated last year