Alternatives and similar repositories for lightspin-2022-top-7-attack-paths:

Users that are interested in lightspin-2022-top-7-attack-paths are comparing it to the libraries listed below

• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 2 years ago
• nccgroup / kubetcd
  Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
  ☆73Updated 9 months ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆27Updated 2 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆112Updated 6 years ago
• jschauma / check-springshell
  try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
  ☆23Updated 2 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆51Updated 3 years ago
• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆77Updated 2 years ago
• horizon3ai / CVE-2021-44077
  Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077
  ☆33Updated 3 years ago
• grines / s3c2
  ☆17Updated 3 years ago
• thesubtlety / go-decrypt-jenkins
  Simple tool to decrypt Jenkins encrypted strings
  ☆75Updated last year
• chaitin / mimicry
  Mimicry is a dynamic deception tool that actively deceives an attacker during exploitation and post-exploitation.
  ☆55Updated last year
• grines / scour
  ☆124Updated 7 months ago
• Permiso-io-tools / SkyScalpel
  ☆31Updated 3 months ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆19Updated last year
• RhinoSecurityLabs / dsnap
  Utility for downloading and mounting EBS snapshots using the EBS Direct API's
  ☆81Updated 2 years ago
• carlospolop / Cloudtrail2IAM
  ☆20Updated last year
• On1-Tech / Red-Team-Tools
  Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK
  ☆30Updated 4 years ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆46Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆66Updated 5 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 3 years ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated last year
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆53Updated 6 months ago
• Static-Flow / CloudCopy
  This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…
  ☆120Updated 5 years ago
• dinhbaouit / CVE-2021-26084
  ☆54Updated 3 years ago
• ox-eye / Ox4Shell
  Deobfuscate Log4Shell payloads with ease.
  ☆161Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• jackadamson / CVE-2021-26700
  RCE in NPM VSCode Extension
  ☆20Updated 3 years ago
• grines / goc2
  MacOS C2 Framework
  ☆83Updated 3 years ago
• Haxel0rd / haxel0rds
  Some private tools i decided to release for public.
  ☆49Updated 11 months ago