brompwnie / botb
A container analysis and exploitation tool for pentesters and engineers.
☆665Updated last year
Alternatives and similar repositories for botb:
Users that are interested in botb are comparing it to the libraries listed below
- Peirates - Kubernetes Penetration Testing tool☆1,309Updated this week
- Kubernetes focused container assessment and context discovery tool for penetration testing☆454Updated 10 months ago
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,161Updated 2 months ago
- A tool to scan Kubernetes cluster for risky permissions☆1,372Updated 4 months ago
- ☆243Updated 7 months ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆620Updated 5 years ago
- The Swiss Army Container for Cloud Native Security. Container with all the list of useful tools/commands while hacking and securing Conta…☆272Updated 2 years ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆344Updated last month
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- Cloud-related research releases from the Rhino Security Labs team.☆384Updated 5 years ago
- Tool for auditing RBACs in Kubernetes☆217Updated last year
- ☆560Updated 3 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆341Updated 4 years ago
- WeirdAAL (AWS Attack Library)☆802Updated 3 months ago
- Exploits written by the Rhino Security Labs team☆1,074Updated 4 years ago
- A collection of manifests that will create pods with elevated privileges.☆620Updated 2 years ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆922Updated this week
- k8s audit repo☆227Updated 5 years ago
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,302Updated 2 months ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆435Updated last month
- ☆689Updated 4 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆689Updated last year
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆216Updated 2 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆516Updated last year
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆247Updated last week
- A client for kubelet☆775Updated 3 months ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆380Updated last year
- Container introspection tool. Find out what container runtime is being used as well as features available.☆1,030Updated 4 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆718Updated 8 months ago
- Private key usage verification☆431Updated 3 weeks ago