nccgroup / kubetcd

Related projects: ⓘ

• Esonhugh / KubernetesCRInjection
  Here is a common vulnerability when Kubernetes Controller designed.
  ☆12Updated 9 months ago
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• lightspin-tech / lightspin-2022-top-7-attack-paths
  Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …
  ☆38Updated 2 years ago
• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆77Updated 2 years ago
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆89Updated 3 years ago
• Esonhugh / k8spider
  Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForci…
  ☆132Updated 2 weeks ago
• tabbysable / POC-2020-8558
  Information about Kubernetes CVE-2020-8558, including proof of concept exploit.
  ☆42Updated 4 years ago
• twistlock / sa-hunter
  Correlates serviceaccounts and pods to the permissions granted to them via rolebindings and clusterrolesbindings.
  ☆34Updated 2 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 5 years ago
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆35Updated 2 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• spiarh / webhook-cve-2022-0811
  Simple webhook to block exploitation of CVE-2022-0811
  ☆8Updated 2 years ago
• NitroCao / CVE-2024-21626
  PoC and Detection for CVE-2024-21626
  ☆70Updated 7 months ago
• g3rzi / HackingKubernetes
  This repository contain any information that can be used to hack Kubernetes
  ☆98Updated 2 years ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆78Updated 7 months ago
• 404tk / cloudtoolkit
  Cloud Penetration Testing Toolkit
  ☆92Updated 2 months ago
• thesubtlety / go-decrypt-jenkins
  Simple tool to decrypt Jenkins encrypted strings
  ☆68Updated last year
• ctrsploit / ctrsploit
  A penetration toolkit for container environment
  ☆75Updated 2 weeks ago
• securisec / cliam
  Cloud agnostic IAM permissions enumerator
  ☆138Updated 3 weeks ago
• tdwyer / CVE-2020-8559
  This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability
  ☆53Updated 4 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆102Updated 2 years ago
• projectdiscovery / network-fingerprint
  A fingerprint generation helper for nuclei network templates
  ☆71Updated last year
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆19Updated last year
• DSecurity / istio-security-restrictions-bypass
  Detect and bypass Istio sidecar
  ☆18Updated 2 years ago
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆36Updated 3 months ago
• ox-eye / Ox4Shell
  Deobfuscate Log4Shell payloads with ease.
  ☆159Updated 2 years ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆56Updated 6 months ago
• Contrast-Security-OSS / Spring-Kafka-POC-CVE-2023-34040
  POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
  ☆43Updated last year
• nccgroup / abstractshimmer
  Proof of concept for CVE-2020-15257 in containerd.
  ☆16Updated 3 years ago
• thezdi / presentations
  ZDI presentations, publications, whitepapers etc
  ☆43Updated 11 months ago