danielsagi / kube-dnsspoof
A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.
☆77Updated 5 years ago
Alternatives and similar repositories for kube-dnsspoof:
Users that are interested in kube-dnsspoof are comparing it to the libraries listed below
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆95Updated 4 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- Links and resources for the O'Reilly Kubernetes Security book☆98Updated 4 years ago
- Proof of Concept exploit for Kubernetes CVE-2020-8559☆20Updated 4 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆103Updated 5 years ago
- ☆27Updated 5 months ago
- This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability☆54Updated 4 years ago
- Test utility for cve-2018-1002105☆195Updated 6 years ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆95Updated 2 months ago
- A repository to store Rad Fingerprinting data.☆24Updated 8 months ago
- Information about Kubernetes CVE-2020-8558, including proof of concept exploit.☆42Updated 4 years ago
- A security monitoring solution for Kubernetes☆132Updated last year
- Kubernetes Easter CTF☆58Updated 4 years ago
- Kubolt utility for scanning public kubernetes clusters☆109Updated 10 months ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆112Updated 6 years ago
- book website☆68Updated 3 years ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- ☆25Updated 11 months ago
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- A beginner-friendly CTF about Kubernetes security.☆77Updated 2 years ago
- PoC for CVE-2018-1002105.☆223Updated 6 years ago
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆90Updated 4 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- Kubernetes Security: from Image Hygiene to Network Policies☆143Updated 6 years ago
- Exploit for CVE-2021-25741 vulnerability☆28Updated 3 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆29Updated 2 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 4 years ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆60Updated 2 years ago