lightspin-tech / lightspin-2022-top-7-attack-pathsLinks
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
☆40Updated 2 years ago
Alternatives and similar repositories for lightspin-2022-top-7-attack-paths
Users that are interested in lightspin-2022-top-7-attack-paths are comparing it to the libraries listed below
Sorting:
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆80Updated last year
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 6 years ago
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- POC for CVE-2022-23648☆36Updated 3 years ago
- Simple tool to decrypt Jenkins encrypted strings☆76Updated 2 years ago
- Deobfuscate Log4Shell payloads with ease.☆163Updated 2 years ago
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Updated 3 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆97Updated 4 years ago
- ☆127Updated last year
- Cloud Penetration Testing Toolkit☆103Updated 4 months ago
- A fingerprint generation helper for nuclei network templates☆75Updated 2 years ago
- Intentionally Vulnerable to Spring4Shell☆52Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated last month
- ☆54Updated 3 years ago
- This repository contain any information that can be used to hack Kubernetes☆108Updated 3 years ago
- PoC for CVE-2021-43557☆21Updated 3 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK☆31Updated 4 years ago
- Exploit for CVE-2021-25741 vulnerability☆28Updated 3 years ago
- Sample Spring application to Demonstrate the Gateway Actuator☆47Updated 3 years ago
- Apache Flink 目录遍历漏洞批量检测 (CVE-2020-17519)☆48Updated 4 years ago
- WAF bypass PoC☆48Updated last year
- CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…☆153Updated last week
- awesome resources about cloud security 🐿☆20Updated 3 years ago
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆57Updated 2 years ago
- ☆43Updated 2 years ago
- Tool to spray AWS Console IAM Logins☆29Updated 3 years ago
- Source Code Management Attack Toolkit☆219Updated 2 years ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- MacOS C2 Framework☆84Updated 3 years ago