lightspin-tech / lightspin-2022-top-7-attack-pathsLinks
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
☆40Updated 3 years ago
Alternatives and similar repositories for lightspin-2022-top-7-attack-paths
Users that are interested in lightspin-2022-top-7-attack-paths are comparing it to the libraries listed below
Sorting:
- Container Excape PoC for CVE-2022-0847 "DirtyPipe"☆78Updated 3 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆114Updated 6 years ago
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆87Updated last year
- POC for CVE-2022-23648☆37Updated 3 years ago
- Simple tool to decrypt Jenkins encrypted strings☆79Updated 2 years ago
- ☆126Updated last year
- CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…☆170Updated this week
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆76Updated 3 years ago
- A CALDERA plugin☆70Updated last month
- Deobfuscate Log4Shell payloads with ease.☆170Updated 3 years ago
- Tool to spray AWS Console IAM Logins☆34Updated 3 years ago
- Detecting Cobalt Strike Team Servers on targets through traffic telemetry.☆22Updated last year
- Cloud Penetration Testing Toolkit☆105Updated 3 months ago
- Intentionally Vulnerable to Spring4Shell☆52Updated 3 years ago
- A Terraform reproducer for IngressNightmare☆25Updated 7 months ago
- This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…☆122Updated 6 years ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆98Updated 5 years ago
- ☆17Updated 4 years ago
- Tool to pentest spark clusters☆32Updated last year
- PoC for CVE-2021-43557☆22Updated 3 years ago
- WAF bypass PoC☆49Updated 2 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 5 months ago
- ☆71Updated 4 years ago
- MacOS C2 Framework☆85Updated 4 years ago
- ☆54Updated 4 years ago
- This is a Poc for BIGIP iControl unauth RCE☆51Updated 4 years ago
- We publish our challenge questions for everyone.☆94Updated 4 years ago
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- Jekyll Files for cloudsecwiki.com☆49Updated 4 years ago