g3rzi / HackingKubernetes

Related projects ⓘ

Alternatives and complementary repositories for HackingKubernetes

• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆76Updated 2 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 5 years ago
• ox-eye / Ox4Shell
  Deobfuscate Log4Shell payloads with ease.
  ☆160Updated 2 years ago
• thesubtlety / go-decrypt-jenkins
  Simple tool to decrypt Jenkins encrypted strings
  ☆71Updated last year
• alt3kx / CVE-2022-1388_PoC
  F5 BIG-IP RCE exploitation (CVE-2022-1388)
  ☆87Updated 2 years ago
• h4wkst3r / SCMKit
  Source Code Management Attack Toolkit
  ☆210Updated 2 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆102Updated 2 years ago
• projectdiscovery / network-fingerprint
  A fingerprint generation helper for nuclei network templates
  ☆72Updated 2 years ago
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆92Updated 4 years ago
• nccgroup / kubetcd
  Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
  ☆70Updated 6 months ago
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• SunWeb3Sec / Kubernetes-security
  Kubernetes pentesting, hardening and hunting tools.
  ☆58Updated last year
• horizon3ai / CVE-2022-22972
  ☆154Updated 2 years ago
• horizon3ai / CVE-2022-47966
  POC for CVE-2022-47966 affecting multiple ManageEngine products
  ☆124Updated last year
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 2 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆67Updated last year
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆106Updated 4 years ago
• kljunowsky / CVE-2022-41040-POC
  CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server
  ☆88Updated last year
• knqyf263 / CVE-2021-40346
  CVE-2021-40346 PoC (HAProxy HTTP Smuggling)
  ☆39Updated 3 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆280Updated 7 months ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆86Updated 7 months ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆121Updated last year
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆322Updated 2 years ago
• tid4l / GoWard
  A robust Red Team proxy written in Go.
  ☆160Updated 2 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆121Updated last week
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 3 years ago
• SeanWrightSec / CVE-2022-42889-PoC
  Proof of Concept for the Apache commons-text vulnerability CVE-2022-42889.
  ☆34Updated 2 years ago