Alternatives and similar repositories for k8s_ssrf_portscanner

Users that are interested in k8s_ssrf_portscanner are comparing it to the libraries listed below

• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 5 months ago
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 11 months ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• ethiack / CVE-2023-29007
  PoC repository for CVE-2023-29007
  ☆33Updated 2 years ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆30Updated 3 years ago
• absholi7ly / Bypass-authentication-GitHub-Enterprise-Server
  The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …
  ☆50Updated last year
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 3 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 5 months ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆26Updated last month
• sandumjacob / IngressNightmare-POCs
  CVE-2025-1974
  ☆89Updated 4 months ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆52Updated last year
• hackvertor / shadow-repeater
  ☆38Updated 2 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated last year
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆67Updated last year
• dwisiswant0 / cve-2023-50164-poc
  Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
  ☆57Updated last year
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆61Updated 4 months ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated last year
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆27Updated last year
• bjornhels / CVE-2025-30065
  PoC
  ☆12Updated 4 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆44Updated last year
• hac01 / gcp-iam-brute
  ☆50Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Updated last year
• hoodoer / postBasedXSS
  Demo of various ways to exploit post based reflected XSS
  ☆18Updated 2 years ago
• jfrog / text4shell-tools
  ☆104Updated 2 years ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆53Updated 2 years ago
• NHAS / egressinator
  Find what egress ports are allowed
  ☆42Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 3 months ago
• NightBloodz / CVE-2025-4123
  Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  ☆45Updated 3 weeks ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆41Updated 6 months ago