quarkslab / kdiggerLinks
Kubernetes focused container assessment and context discovery tool for penetration testing
☆466Updated last year
Alternatives and similar repositories for kdigger
Users that are interested in kdigger are comparing it to the libraries listed below
Sorting:
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆351Updated 6 months ago
- Tool for auditing RBACs in Kubernetes☆224Updated last year
- A collection of manifests that will create pods with elevated privileges.☆647Updated 3 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- ☆263Updated last year
- ☆102Updated 7 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆246Updated last month
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆85Updated last year
- Tool for building Kubernetes attack paths☆914Updated last week
- The Swiss Army Container for Cloud Native Security. Container with all the list of useful tools/commands while hacking and securing Conta…☆283Updated 2 years ago
- Peirates - Kubernetes Penetration Testing tool☆1,360Updated last month
- A container analysis and exploitation tool for pentesters and engineers.☆673Updated 2 years ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆188Updated 2 weeks ago
- A deliberately vulnerable Kubernetes cluster☆129Updated last year
- ☆181Updated 5 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Dynamic Application and API Security Testing☆193Updated 2 years ago
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.☆173Updated 8 months ago
- Kubernetes exploitation tool☆363Updated last year
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆156Updated last year
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆305Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 9 months ago
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…☆479Updated 3 years ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆119Updated 2 years ago
- A client for kubelet☆828Updated last month
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,199Updated 8 months ago
- Kubernetes Security Training Platform - focusing on security mitigation☆958Updated last year
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆209Updated 4 years ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆364Updated 2 months ago
- ☆44Updated 4 months ago