lobuhi / awrbacs
AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
☆26Updated 3 months ago
Related projects: ⓘ
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆56Updated 6 months ago
- ☆41Updated 10 months ago
- ☆15Updated 2 months ago
- ☆31Updated last year
- Public OCI-Image (docker image) Security Checker☆11Updated 4 months ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆50Updated 9 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆207Updated 3 weeks ago
- WAF bypass PoC☆43Updated 11 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆68Updated 7 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆38Updated last month
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated last month
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated 11 months ago
- ☆58Updated last year
- ☆39Updated 3 months ago
- Secret Scanner for Slack, Jira, Confluence, Asana, Wrike and Linear☆39Updated 3 weeks ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆110Updated last year
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆23Updated 2 months ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆48Updated last year
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆64Updated this week
- Discover vulnerabilities and container image misconfiguration in production environments.☆53Updated 2 weeks ago
- Kubernetes Unhinged Shell 😎☆46Updated last year
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆71Updated last year
- a tool to audit the istio service mesh☆173Updated 2 years ago
- Curating Falco rules with MITRE ATT&CK Matrix☆74Updated 6 months ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Tool for reconnaissance of AWS cloud environments☆13Updated 11 months ago
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆62Updated 2 months ago
- Clean accounts over permissions in GCP infra at scale☆70Updated last year