lightspin-tech / lightspin-2022-top-7-attack-pathsLinks
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
☆41Updated 3 years ago
Alternatives and similar repositories for lightspin-2022-top-7-attack-paths
Users that are interested in lightspin-2022-top-7-attack-paths are comparing it to the libraries listed below
Sorting:
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 6 years ago
- POC for CVE-2022-23648☆36Updated 3 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆82Updated last year
- Simple tool to decrypt Jenkins encrypted strings☆78Updated 2 years ago
- Deobfuscate Log4Shell payloads with ease.☆164Updated 3 years ago
- ☆127Updated last year
- A fingerprint generation helper for nuclei network templates☆75Updated 2 years ago
- CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…☆157Updated 2 weeks ago
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆58Updated 2 years ago
- Intentionally Vulnerable to Spring4Shell☆52Updated 3 years ago
- Tool to spray AWS Console IAM Logins☆30Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 3 months ago
- Cloud Penetration Testing Toolkit☆104Updated last month
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆97Updated 4 years ago
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Updated 3 years ago
- MacOS C2 Framework☆84Updated 3 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Updated 4 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- ☆54Updated 3 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…☆121Updated 5 years ago
- PoC for CVE-2021-43557☆21Updated 3 years ago
- Exploit for CVE-2021-25741 vulnerability☆28Updated 3 years ago
- Damn Vulnerable SCA Application☆39Updated last month
- This repository contain any information that can be used to hack Kubernetes☆109Updated 3 years ago
- Tool to pentest spark clusters☆32Updated last year
- A CALDERA plugin☆69Updated last week
- WAF bypass PoC☆48Updated last year
- ☆17Updated 3 years ago