padok-team / git-secret-scanner
Find secrets in git repositories with TruffleHog & Gitleaks
☆47Updated last week
Alternatives and similar repositories for git-secret-scanner:
Users that are interested in git-secret-scanner are comparing it to the libraries listed below
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 2 months ago
- WAF bypass PoC☆46Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆79Updated 2 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Outil de sécurité des architectures kubernetes avancées☆50Updated 4 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆78Updated last year
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 7 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated last year
- a tool to audit the istio service mesh☆173Updated 3 years ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆46Updated 10 months ago
- A utility to (re-)import findings and language data into DefectDojo☆42Updated 6 months ago
- ☆38Updated 4 months ago
- A tool for preventing the installation of malicious PyPI and npm packages☆130Updated this week
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 3 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆200Updated 2 months ago
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆27Updated this week
- A tool to automatically give AWS IAM users access to your Kubernetes cluster.☆51Updated 3 weeks ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆55Updated last month
- A toolset to juggle AWS roles for persistent access☆54Updated 7 months ago
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week
- Protect against subdomain takeover☆93Updated 10 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆103Updated last year
- ☆175Updated 4 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆99Updated 4 months ago
- prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.☆39Updated this week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated 5 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 7 months ago
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.☆171Updated 2 months ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆273Updated last month