krisnova / kush
Kubernetes Unhinged Shell 😎
☆45Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for kush
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆70Updated last year
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆80Updated 9 months ago
- Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.☆43Updated last year
- egrets monitors egress☆45Updated 4 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆103Updated 5 years ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- ☆31Updated last year
- K8s API Honeypot with Active Defense Capabilities☆39Updated 10 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆39Updated 11 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆59Updated 8 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- An Evil OIDC Server☆51Updated 2 years ago
- A beginner-friendly CTF about Kubernetes security.☆76Updated 2 years ago
- WAF bypass PoC☆43Updated last year
- ☆15Updated 4 months ago
- ☆17Updated 2 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆45Updated 2 months ago
- ☆40Updated last month
- ☆27Updated last week
- Blogpost series showcasing interesting cloud - web app security bugs☆46Updated last year
- ☆24Updated 6 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated 3 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- A small library to alter AWS API requests; Used for fuzzing research☆21Updated last year
- AWS STS token decoder☆37Updated 3 months ago
- ☆28Updated 4 years ago