g3rzi / HackingKubernetesLinks
This repository contain any information that can be used to hack Kubernetes
☆103Updated 2 years ago
Alternatives and similar repositories for HackingKubernetes
Users that are interested in HackingKubernetes are comparing it to the libraries listed below
Sorting:
- Simple tool to decrypt Jenkins encrypted strings☆76Updated last year
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆112Updated 6 years ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆80Updated last year
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆96Updated 4 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆134Updated 2 months ago
- Source Code Management Attack Toolkit☆219Updated 2 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆88Updated 3 years ago
- A robust Red Team proxy written in Go.☆160Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆73Updated 2 years ago
- Deobfuscate Log4Shell payloads with ease.☆162Updated 2 years ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- Kubernetes pentesting, hardening and hunting tools.☆65Updated 2 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆40Updated 3 years ago
- Apache Spark Shell Command Injection Vulnerability☆88Updated 2 years ago
- Cloud agnostic IAM permissions enumerator☆148Updated last month
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆127Updated 2 years ago
- Exploiting CVE-2021-44228 in VMWare Horizon for remote code execution and more.☆120Updated 3 years ago
- Command line tool for dumping Jenkins credentials.☆175Updated 9 months ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆89Updated 2 years ago
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆102Updated 3 years ago
- Repository of CVE found by OCD people☆76Updated 10 months ago
- Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207☆114Updated last year
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆126Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- ☆14Updated 6 years ago
- POC for CVE-2022-23648☆36Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated last year