containerscrew / rootisnaked
Simple root privilege escalation detection using eBPF π
β12Updated 2 months ago
Alternatives and similar repositories for rootisnaked:
Users that are interested in rootisnaked are comparing it to the libraries listed below
- Publications from the eBPF foundationβ23Updated 5 months ago
- β72Updated 3 months ago
- β86Updated 9 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.β38Updated last year
- β11Updated 2 months ago
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetesβ65Updated last week
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.β21Updated 7 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β82Updated 3 months ago
- β21Updated 5 months ago
- β20Updated 11 months ago
- K8s API Honeypot with Active Defense Capabilitiesβ40Updated last year
- β25Updated 11 months ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.β21Updated 6 months ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the resβ¦β37Updated 3 months ago
- AttachΓ© provides an emulation layer for Cloud Provider IMDS APIsβ42Updated 10 months ago
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG Appβ¦β62Updated 2 weeks ago
- β63Updated 2 years ago
- A repository to store Rad Fingerprinting data.β24Updated 8 months ago
- Semgrep-based Policy Controller for Kubernetesβ47Updated 3 weeks ago
- This tool have the power to hide any PID/directory in the Linux kernelβ24Updated 7 months ago
- Kubernetes offensive framework built in eBPFβ37Updated 2 years ago
- egrets monitors egressβ45Updated 5 years ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.β53Updated 3 months ago
- proof-of-concept example of using eBPF to Monitor for eBPF Map tamperingβ21Updated 3 years ago
- β86Updated last month
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes clusterβ36Updated 3 years ago
- π Seccomp profiling and function-level tracing tool.β154Updated last week
- β19Updated last month
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specificationβ66Updated 4 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).β28Updated 2 months ago