Alternatives and similar repositories for kind-of-insecure

Users that are interested in kind-of-insecure are comparing it to the libraries listed below

• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆77Updated 5 years ago
• DolosGroup / Jenkins-Pillage
  A tool for automatically gathering sensitive information from exposed Jenkins servers
  ☆104Updated 2 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆105Updated 6 years ago
• alexivkin / kubepwn
  Kubernetes Pwnage for all
  ☆56Updated 4 years ago
• ProfessionallyEvil / harpoon
  A collection of scripts, and tips and tricks for hacking k8s clusters and containers.
  ☆136Updated 11 months ago
• raesene / TestingScripts
  A More or less Random Collection of Scripts for security Testing.
  ☆65Updated 3 years ago
• nccgroup / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆111Updated 5 years ago
• anshumanbh / kubebot
  A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform
  ☆165Updated last year
• antitree / cmd_and_kubectl_demos
  ☆27Updated last month
• nodyhub / k8s-ctf-rocks
  Kubernetes Easter CTF
  ☆59Updated 5 years ago
• evict / poc_CVE-2018-1002105
  PoC for CVE-2018-1002105.
  ☆223Updated 6 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆83Updated 5 years ago
• mauilion / blackhat-2019
  ☆51Updated 5 years ago
• singe / container-breakouts
  Testing/collecting some container breakouts
  ☆94Updated 6 years ago
• calinah / learn-by-hacking-kccn
  ☆50Updated 6 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• moloch-- / burp-multiplayer
  Burp with Friends
  ☆103Updated 2 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 7 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 8 months ago
• we45 / Serverless-Workshop
  Serverless Workshop
  ☆16Updated 2 years ago
• avineshwar / slurp
  S3 bucket enumerator
  ☆44Updated 7 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 6 years ago
• TestingPens / Constole
  Scan for and exploit Consul agents
  ☆40Updated 6 years ago
• tabbysable / POC-2020-8559
  Proof of Concept exploit for Kubernetes CVE-2020-8559
  ☆20Updated 5 years ago
• averonesis / kubolt
  Kubolt utility for scanning public kubernetes clusters
  ☆110Updated 3 months ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 6 years ago
• tomsteele / cloud-proxy
  cloud-proxy creates multiple DO droplets and then starts local socks proxies using SSH
  ☆62Updated 3 years ago