kabachook/k8s-security external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

kabachook/k8s-security

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kabachook/k8s-security)

Close

kabachook / k8s-securityView on GitHubMore

• External links
• Readme badge

Kubernetes security notes and best practices

☆729Apr 15, 2022Updated 3 years ago

Alternatives and similar repositories for k8s-security

Users that are interested in k8s-security are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Metarget / k0otkit

  View on GitHub
  k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
  ☆301Aug 30, 2021Updated 4 years ago
• waderwu / attackRmi

  View on GitHub
  attackRmi
  ☆258Oct 14, 2020Updated 5 years ago
• thunderbarca / Caesar

  View on GitHub
  一个全新的敏感文件发现工具
  ☆225Jan 10, 2021Updated 5 years ago
• wofeiwo / webcgi-exploits

  View on GitHub
  Multi-language web CGI interfaces exploits.
  ☆399Aug 22, 2022Updated 3 years ago
• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• threedr3am / ZhouYu

  View on GitHub
  （周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆614Dec 29, 2021Updated 4 years ago
• veracode-research / solr-injection

  View on GitHub
  Apache Solr Injection Research
  ☆580Jan 28, 2020Updated 6 years ago
• NS-Sp4ce / MoAn_Honey_Pot_Urls

  View on GitHub
  X安蜜罐用的一些存在JSonp劫持的API
  ☆93May 28, 2021Updated 4 years ago
• QAX-A-Team / redis_lua_exploit

  View on GitHub
  ☆146Jun 20, 2018Updated 7 years ago
• Lonely-night / fastjson_gadgets_scanner

  View on GitHub
  ☆131Jun 17, 2022Updated 3 years ago
• cbwang505 / CVE-2020-1066-EXP

  View on GitHub
  CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统
  ☆187Jun 17, 2020Updated 5 years ago
• Veraxy00 / Jumpserver-EXP

  View on GitHub
  JumpServer远程代码执行漏洞检测利用脚本
  ☆204Feb 9, 2021Updated 5 years ago
• voidfyoo / rwctf-2021-old-system

  View on GitHub
  ☆78Jan 12, 2021Updated 5 years ago
• codeplutos / java-security-manager-bypass

  View on GitHub
  ☆153Jun 24, 2019Updated 6 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• Ramos-dev / OSSTunnel

  View on GitHub
  基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具
  ☆328Oct 10, 2020Updated 5 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆270Mar 4, 2022Updated 4 years ago
• iceyhexman / flask_memory_shell

  View on GitHub
  Flask 内存马
  ☆314Mar 26, 2021Updated 5 years ago
• freach / kubernetes-security-best-practice

  View on GitHub
  Kubernetes Security - Best Practice Guide
  ☆2,715Sep 11, 2019Updated 6 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• EvilPulsar / S2-061

  View on GitHub
  some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute
  ☆70Dec 14, 2020Updated 5 years ago
• HXSecurity / DongTai-agent-java

  View on GitHub
  Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…
  ☆697Dec 25, 2023Updated 2 years ago
• sirpedrotavares / Proxylogon-exploit

  View on GitHub
  proxylogon exploit - CVE-2021-26857
  ☆111Mar 11, 2021Updated 5 years ago
• C4o / Juggler

  View on GitHub
  A system that may trick hackers. 针对黑客的拟态欺骗系统。
  ☆455Nov 20, 2025Updated 4 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• jweny / MemShellDemo

  View on GitHub
  内存马Demo合集 memshell demo for java / php / python
  ☆425May 31, 2021Updated 4 years ago
• Mel0day / RedTeam-BCS

  View on GitHub
  BCS（北京网络安全大会）2019 红队行动会议重点内容
  ☆819Sep 4, 2019Updated 6 years ago
• r35tart / Penetration_Testing_Case

  View on GitHub
  用于记录分享一些有趣的案例
  ☆865Jan 10, 2022Updated 4 years ago
• LeadroyaL / fastjson-blacklist

  View on GitHub
  ☆835Jun 7, 2022Updated 3 years ago
• neargle / cloud_native_security_test_case

  View on GitHub
  🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]
  ☆81Jul 23, 2021Updated 4 years ago
• BeichenDream / MysqlT

  View on GitHub
  伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者
  ☆363Apr 24, 2022Updated 3 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆718May 25, 2020Updated 5 years ago
• Metarget / awesome-cloud-native-security

  View on GitHub
  awesome resources about cloud native security 🐿
  ☆326Nov 4, 2023Updated 2 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• lufeirider / BypassShell

  View on GitHub
  anti AV
  ☆291Mar 12, 2020Updated 6 years ago
• zcgonvh / CVE-2020-17144

  View on GitHub
  weaponized tool for CVE-2020-17144
  ☆158Dec 9, 2020Updated 5 years ago
• threedr3am / gadgetinspector

  View on GitHub
  一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
  ☆458Mar 24, 2022Updated 4 years ago
• cyberark / KubiScan

  View on GitHub
  A tool to scan Kubernetes cluster for risky permissions
  ☆1,417May 25, 2025Updated 10 months ago
• orangetw / awesome-jenkins-rce-2019

  View on GitHub
  There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
  ☆607May 17, 2019Updated 6 years ago
• threedr3am / log-agent

  View on GitHub
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆125Jul 17, 2020Updated 5 years ago
• sysdiglabs / kube-psp-advisor

  View on GitHub
  Help building an adaptive and fine-grained pod security policy
  ☆328Oct 11, 2023Updated 2 years ago