semgr8ns / semgr8s
Semgrep-based Policy Controller for Kubernetes
☆47Updated last month
Alternatives and similar repositories for semgr8s:
Users that are interested in semgr8s are comparing it to the libraries listed below
- A PoC to Simulate Ransomware Attack on AWS Environment☆31Updated 6 months ago
- Tool for obfuscating and deobfuscating data.☆70Updated last year
- Unauthenticated enumeration of AWS IAM Roles.☆24Updated 3 months ago
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆51Updated 5 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated last year
- ☆35Updated 9 months ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 3 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated last year
- ☆47Updated 10 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆95Updated 3 weeks ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆36Updated 7 months ago
- ☆40Updated 5 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated 4 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Updated last year
- ☆72Updated 3 months ago
- ☆48Updated 6 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆21Updated 2 weeks ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- ☆29Updated 5 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 8 months ago
- ☆64Updated last week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆139Updated 4 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆66Updated 3 weeks ago
- A Model Context Protocol server that connects AI assistants like Claude to AWS security services, allowing them to autonomously query, in…☆31Updated this week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 6 months ago
- An open source Wireshark extcap to make ad hoc mirroring of AWS EC2 traffic easier☆19Updated 4 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 5 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆46Updated 8 months ago