Alternatives and similar repositories for kush

Users that are interested in kush are comparing it to the libraries listed below

• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 4 years ago
• quarkslab / minik8s-ctf
  A beginner-friendly CTF about Kubernetes security.
  ☆80Updated 3 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 7 years ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆88Updated last year
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆54Updated 3 years ago
• antitree / keyctl-unmask
  Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.
  ☆44Updated last week
• raesene / eathar
  ☆44Updated 8 months ago
• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆162Updated last month
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆74Updated 3 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated 3 years ago
• antitree / seccomp-diff
  ☆86Updated last week
• ariary / cfuzz
  Command line fuzzer and bruteforcer 🌪 wfuzz for command
  ☆94Updated 3 years ago
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆44Updated 2 years ago
• allisonis / gcp-iam-sentinel-examples
  ☆28Updated 5 years ago
• antitree / cmd_and_kubectl_demos
  ☆27Updated 3 months ago
• alexivkin / kubepwn
  Kubernetes Pwnage for all
  ☆56Updated 5 years ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated 2 years ago
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆36Updated 2 months ago
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 11 months ago
• ReversecLabs / IceKube
  ☆185Updated 8 months ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆73Updated last year
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Updated 2 years ago
• ReversecLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆23Updated last year
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆75Updated 2 years ago
• krisnova / xpid
  Linux Process Discovery. C Library, Go bindings, Runtime.
  ☆223Updated 3 years ago
• evilsocket / unisbom
  UniSBOM is a tool to build a software bill of materials on any platform with a unified data format.
  ☆36Updated 3 years ago
• talbeerysec / STS-token-decoder
  AWS STS token decoder
  ☆46Updated 9 months ago