g3rzi / HackingKubernetesLinks
This repository contain any information that can be used to hack Kubernetes
☆109Updated 3 years ago
Alternatives and similar repositories for HackingKubernetes
Users that are interested in HackingKubernetes are comparing it to the libraries listed below
Sorting:
- Simple tool to decrypt Jenkins encrypted strings☆78Updated 2 years ago
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- Source Code Management Attack Toolkit☆221Updated 2 years ago
- Apache Spark Shell Command Injection Vulnerability☆88Updated 2 years ago
- ☆127Updated last year
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆102Updated 3 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆88Updated 3 years ago
- A robust Red Team proxy written in Go.☆162Updated 3 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆134Updated 2 months ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆42Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆75Updated 2 years ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- Cloud agnostic IAM permissions enumerator☆153Updated 4 months ago
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆127Updated 2 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 6 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆82Updated last year
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- Deobfuscate Log4Shell payloads with ease.☆164Updated 3 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆97Updated 4 years ago
- Kubernetes pentesting, hardening and hunting tools.☆70Updated 2 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆54Updated last year
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆108Updated 3 years ago
- Shell Simulation over Net-SNMP with extend functionality☆96Updated 4 years ago
- Proof of Concept for the Apache commons-text vulnerability CVE-2022-42889.☆34Updated 2 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆175Updated 10 months ago
- Command line tool for dumping Jenkins credentials.☆186Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆30Updated 2 years ago
- The purpose of this project is to demonstrate the Log4Shell exploit with Log4J vulnerabilities using PDF as delivery channel☆202Updated 3 years ago
- Recurrent Neural Network SubDomain Discovery Tool☆95Updated 2 years ago