lightspin-tech / lightspin-2022-top-7-attack-paths

Related projects ⓘ

Alternatives and complementary repositories for lightspin-2022-top-7-attack-paths

• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 5 years ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆25Updated 2 years ago
• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆76Updated 2 years ago
• nccgroup / kubetcd
  Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
  ☆70Updated 6 months ago
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 2 years ago
• jschauma / check-springshell
  try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
  ☆23Updated 2 years ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆19Updated last year
• chaitin / mimicry
  Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.
  ☆54Updated last year
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated last year
• ox-eye / Ox4Shell
  Deobfuscate Log4Shell payloads with ease.
  ☆160Updated 2 years ago
• thesubtlety / go-decrypt-jenkins
  Simple tool to decrypt Jenkins encrypted strings
  ☆71Updated last year
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• On1-Tech / Red-Team-Tools
  Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK
  ☆30Updated 4 years ago
• tdwyer / CVE-2020-8559
  This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability
  ☆53Updated 4 years ago
• projectdiscovery / network-fingerprint
  A fingerprint generation helper for nuclei network templates
  ☆72Updated 2 years ago
• grines / goc2
  MacOS C2 Framework
  ☆82Updated 3 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆64Updated 2 months ago
• tabbysable / POC-2020-8558
  Information about Kubernetes CVE-2020-8558, including proof of concept exploit.
  ☆42Updated 4 years ago
• horizon3ai / CVE-2021-44077
  Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077
  ☆31Updated 2 years ago
• jackadamson / CVE-2021-26700
  RCE in NPM VSCode Extension
  ☆20Updated 3 years ago
• mr-r3b00t / CVE-2020-2021
  CVE-2020-2021
  ☆20Updated 4 years ago
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆92Updated 4 years ago
• xvnpw / k8s-CVE-2021-43557-poc
  PoC for CVE-2021-43557
  ☆21Updated 2 years ago
• dinhbaouit / CVE-2021-26084
  ☆54Updated 3 years ago
• jbaines-r7 / spring4shell_vulnapp
  Intentionally Vulnerable to Spring4Shell
  ☆51Updated 2 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆33Updated 2 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year
• 0xbad53c / webshells
  My personal collection of webshells for educational purposes. Most are custom implementations/adaptations of stuff I found on the interne…
  ☆19Updated 6 months ago