Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent
☆534Jul 30, 2021Updated 4 years ago
Alternatives and similar repositories for gcp-dhcp-takeover-code-exec
Users that are interested in gcp-dhcp-takeover-code-exec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This repo gives an overview of some GCP metadata API attack and defend patterns☆80Mar 23, 2020Updated 6 years ago
- ☆703Nov 27, 2024Updated last year
- Reverse proxies cheatsheet☆1,888Nov 4, 2023Updated 2 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Sep 10, 2019Updated 6 years ago
- This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability☆54Jul 23, 2020Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆2,515Jan 2, 2023Updated 3 years ago
- Collections of Orange Tsai's public presentation slides.☆759Jan 1, 2025Updated last year
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆101Nov 18, 2020Updated 5 years ago
- Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.☆826Jun 12, 2021Updated 5 years ago
- A container analysis and exploitation tool for pentesters and engineers.☆681Sep 27, 2023Updated 2 years ago
- ☆170May 20, 2021Updated 5 years ago
- NAT Slipstreaming allows an attacker to remotely access any TCP/UDP services bound to a victim machine, bypassing the victim’s NAT/firewa…☆1,979Jan 14, 2023Updated 3 years ago
- Client-Side Prototype Pollution Tools☆88Sep 21, 2021Updated 4 years ago
- A DNS rebinding attack framework.☆1,304Jul 3, 2026Updated last week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Catalog Red Team techniques that cause popups in various macOS versions☆16Nov 18, 2024Updated last year
- Prototype Pollution and useful Script Gadgets☆1,636Jan 27, 2024Updated 2 years ago
- Electron Research☆71Feb 9, 2022Updated 4 years ago
- CVE-2021-1675 Detection Info☆214May 20, 2023Updated 3 years ago
- ☆1,202Sep 2, 2022Updated 3 years ago
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆4,553Updated this week
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock☆7,149Mar 12, 2024Updated 2 years ago
- ☆699Jul 4, 2022Updated 4 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆395Aug 15, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆450Oct 3, 2024Updated last year
- Simple patcher tool to turn off TLS handshake validation in golang binaries☆11Apr 23, 2022Updated 4 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆662Feb 1, 2025Updated last year
- C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527☆1,992Jul 20, 2021Updated 4 years ago
- Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.☆625Jun 13, 2020Updated 6 years ago
- Exploit for CVE-2020-3952 in vCenter 6.7☆275Apr 16, 2020Updated 6 years ago
- WinDbg script to spoof origin and url of a renderer process in Chrome☆25Dec 2, 2020Updated 5 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆651Nov 21, 2019Updated 6 years ago
- These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok☆174Feb 6, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- This repo has been replaced by https://www.cloudvulndb.org☆724Jun 29, 2022Updated 4 years ago
- Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.☆44May 7, 2026Updated 2 months ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆541Sep 8, 2021Updated 4 years ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆448Updated this week
- kCTF is a Kubernetes-based infrastructure for CTF competitions. For documentation, see☆786Mar 25, 2026Updated 3 months ago
- Notes about attacking Jenkins servers☆2,098Jul 10, 2024Updated last year
- Client Side Prototype Pollution Scanner☆529Sep 17, 2022Updated 3 years ago