lightspin-tech / lightspin-2022-top-7-attack-pathsLinks
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
☆40Updated 3 years ago
Alternatives and similar repositories for lightspin-2022-top-7-attack-paths
Users that are interested in lightspin-2022-top-7-attack-paths are comparing it to the libraries listed below
Sorting:
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 6 years ago
- POC for CVE-2022-23648☆36Updated 3 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆80Updated last year
- Simple tool to decrypt Jenkins encrypted strings☆77Updated 2 years ago
- Deobfuscate Log4Shell payloads with ease.☆164Updated 2 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆97Updated 4 years ago
- Source Code Management Attack Toolkit☆219Updated 2 years ago
- A fingerprint generation helper for nuclei network templates☆75Updated 2 years ago
- Exploit for CVE-2021-25741 vulnerability☆28Updated 3 years ago
- Cloud Penetration Testing Toolkit☆103Updated 2 weeks ago
- CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…☆155Updated this week
- ☆127Updated last year
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Updated 3 years ago
- This repository contain any information that can be used to hack Kubernetes☆108Updated 3 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Updated 4 years ago
- Tool to spray AWS Console IAM Logins☆30Updated 3 years ago
- Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.☆58Updated 2 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆107Updated 4 years ago
- ☆54Updated 3 years ago
- ☆71Updated 4 years ago
- This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…☆121Updated 5 years ago
- MacOS C2 Framework☆84Updated 3 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- We publish our challenge questions for everyone.☆94Updated 4 years ago
- ☆17Updated 3 years ago
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- Damn Vulnerable SCA Application☆39Updated 3 weeks ago
- Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK☆31Updated 4 years ago
- Detecting Cobalt Strike Team Servers on targets through traffic telemetry.☆22Updated 11 months ago