evict / poc_CVE-2018-1002105

Related projects: ⓘ

• gravitational / cve-2018-1002105
  Test utility for cve-2018-1002105
  ☆195Updated 5 years ago
• rancorzinho / pocs
  ☆235Updated 5 years ago
• anshumanbh / kubebot
  A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform
  ☆166Updated this week
• q3k / cve-2019-5736-poc
  Unweaponized Proof of Concept for CVE-2019-5736 (Docker escape)
  ☆207Updated 5 years ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 6 years ago
• kayrus / kubelet-exploit
  ☆213Updated 8 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆106Updated 4 years ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆240Updated 2 years ago
• GrrrDog / TLS-Redirection
  TLS Redirection
  ☆115Updated 6 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 5 years ago
• adamyordan / cve-2019-1003000-jenkins-rce-poc
  Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…
  ☆309Updated 5 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆49Updated 6 years ago
• AbsoZed / DockerPwn.py
  Python automation of Docker.sock abuse
  ☆210Updated last year
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆104Updated 6 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆279Updated 2 months ago
• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆98Updated 5 years ago
• mazen160 / struts-pwn_CVE-2018-11776
  An exploit for Apache Struts CVE-2018-11776
  ☆300Updated 6 years ago
• singe / container-breakouts
  Testing/collecting some container breakouts
  ☆93Updated 5 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆84Updated 5 years ago
• danielsagi / kube-dnsspoof
  A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.
  ☆74Updated 5 years ago
• 0ang3el / EasyCSRF
  ☆160Updated 6 years ago
• hook-s3c / CVE-2018-11776-Python-PoC
  Working Python test and PoC for CVE-2018-11776, includes Docker lab
  ☆126Updated 6 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆141Updated 5 years ago
• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆110Updated 5 years ago
• DolosGroup / Jenkins-Pillage
  A tool for automatically gathering sensitive information from exposed Jenkins servers
  ☆103Updated last year
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆251Updated 2 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆184Updated 2 years ago
• averonesis / kubolt
  Kubolt utility for scanning public kubernetes clusters
  ☆109Updated 3 months ago
• twistlock / RunC-CVE-2019-5736
  CVE-2019-5736 POCs
  ☆81Updated 4 years ago
• bgeesaman / kube-env-stealer
  Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env
  ☆102Updated 5 years ago