ofirc / ingress-nightmareLinks
A Terraform reproducer for IngressNightmare
☆25Updated 7 months ago
Alternatives and similar repositories for ingress-nightmare
Users that are interested in ingress-nightmare are comparing it to the libraries listed below
Sorting:
- CVE-2025-1974☆89Updated 6 months ago
- Tool to spray AWS Console IAM Logins☆34Updated 3 years ago
- Damn Vulnerable SCA Application☆42Updated last week
- ☆50Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆50Updated 2 years ago
- WAF bypass PoC☆49Updated 2 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 5 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated 8 months ago
- Determine privileges from cloud credentials via brute-force testing.☆69Updated last year
- Some of my rough notes for Docker threat detection☆47Updated 2 years ago
- ☆31Updated 2 years ago
- Scan your account for the use of untrusted AMIs☆30Updated 2 months ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆29Updated 7 months ago
- First iteration of ML based Feedback WAF☆59Updated last year
- An Evil OIDC Server☆54Updated 3 years ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆74Updated last year
- Verizon Burp Extensions: AI Suite☆141Updated 6 months ago
- Lexmark CVE-2023-26067☆27Updated 2 years ago
- Find what egress ports are allowed☆42Updated 2 years ago
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆89Updated last year
- ☆39Updated last year
- Citrix Scanner for CVE-2023-3519☆51Updated 2 years ago
- A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.☆43Updated last year
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆29Updated last year
- boostsecurityio/lotp☆136Updated this week
- https://lolad-project.github.io/☆81Updated 9 months ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆43Updated 3 years ago
- ☆94Updated 3 years ago
- ☆41Updated this week
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Updated last year