padok-team / git-secret-scanner
Find secrets in git repositories with TruffleHog & Gitleaks
☆37Updated this week
Related projects ⓘ
Alternatives and complementary repositories for git-secret-scanner
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆55Updated 7 months ago
- WAF bypass PoC☆43Updated last year
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.☆166Updated last year
- KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and files…☆30Updated 3 weeks ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆70Updated 9 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆74Updated 8 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆166Updated last month
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆34Updated 2 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆80Updated 9 months ago
- Kubernetes audit logging, when you don't control the control plane☆65Updated this week
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆40Updated last month
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆19Updated last year
- Protect against subdomain takeover☆92Updated 5 months ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆38Updated 5 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆214Updated 2 months ago
- ☆55Updated last year
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆251Updated 3 weeks ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 2 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆57Updated last year
- A command-line tool to perform Local Health Check Probes inside Container Images (ECS, Docker)☆50Updated this week
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆70Updated 6 months ago
- ☆151Updated 2 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆39Updated 2 months ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆53Updated 2 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆82Updated last month
- ☆91Updated 5 months ago
- Determine privileges from cloud credentials via brute-force testing.☆64Updated 2 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆43Updated 10 months ago