ropnop / pentest_charts

Related projects: ⓘ

• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 6 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 3 years ago
• serain / kubelet-anon-rce
  Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)
  ☆113Updated 5 years ago
• twistlock / lambda-persistency-poc
  PoC for gaining persistency on vulnerable Lambdas
  ☆30Updated 3 years ago
• we45 / Serverless-Workshop
  Serverless Workshop
  ☆16Updated last year
• tabbysable / POC-2020-8559
  Proof of Concept exploit for Kubernetes CVE-2020-8559
  ☆20Updated 4 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆84Updated 5 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• pbnj / s3-fuzzer
  🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.
  ☆44Updated 6 years ago
• darryk10 / CVE-2021-25735
  Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass
  ☆18Updated 3 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆85Updated 3 months ago
• nightwatchcybersecurity / cloud_metadata_ips
  List of special metadata IPs used in cloud services
  ☆11Updated 5 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 6 years ago
• tdwyer / CVE-2020-8559
  This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability
  ☆53Updated 4 years ago
• vmware-archive / kube-recon
  Reconnaissance test in Kubernetes clusters
  ☆21Updated 5 years ago
• nccgroup / abstractshimmer
  Proof of concept for CVE-2020-15257 in containerd.
  ☆16Updated 3 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• lightspin-tech / lightspin-2022-top-7-attack-paths
  Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …
  ☆38Updated 2 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆93Updated 5 years ago
• raesene / kind-of-insecure
  Deliberately insecure Kubernetes test clusters built using kind
  ☆11Updated 5 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• m3ssap0 / SpringBreakVulnerableApp
  WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…
  ☆11Updated 5 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• nixwizard / kube-alien
  ☆25Updated 3 years ago
• pownjs / git
  Assorted tools for security-related task for git repositories
  ☆59Updated 2 years ago
• ajxchapman / sshreverseshell
  Full TTY reverse shell over SSH
  ☆57Updated 4 years ago
• intruder-io / param-miner
  Fork of https://github.com/PortSwigger/param-miner for header smuggling research
  ☆12Updated 2 years ago
• anshumanbh / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆29Updated 6 years ago
• edermi / go-tomcat-mgmt-scanner
  A simple scanner to find and brute force tomcat manager logins
  ☆28Updated 4 years ago
• parsiya / eslinter
  Manual JavaScript Linting is a Bug
  ☆49Updated 3 years ago