snyk / leaky-vessels-dynamic-detector

Related projects ⓘ

Alternatives and complementary repositories for leaky-vessels-dynamic-detector

• snyk / leaky-vessels-static-detector
  Static detection tool for runc and Docker "Leaky Vessels" vulnerabilities
  ☆94Updated 3 months ago
• nccgroup / kubetcd
  Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
  ☆70Updated 6 months ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆70Updated last year
• Betep0k / CVE-2021-25741
  Exploit for CVE-2021-25741 vulnerability
  ☆28Updated 2 years ago
• openclarity / vmclarity
  VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities
  ☆101Updated last month
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆167Updated last year
• NitroCao / CVE-2024-21626
  PoC and Detection for CVE-2024-21626
  ☆70Updated 9 months ago
• raesene / eathar
  ☆24Updated 6 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆59Updated 8 months ago
• Esonhugh / k8spider
  Powerful+Fast+Low Privilege Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForci…
  ☆137Updated this week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆38Updated 8 months ago
• hacking-kubernetes / hacking-kubernetes.info
  book website
  ☆66Updated 2 years ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆35Updated last year
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆35Updated 7 months ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆80Updated 9 months ago
• falcosecurity / rules
  Falco rule repository
  ☆96Updated last month
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆66Updated 11 months ago
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆92Updated 4 years ago
• falcosecurity / plugins
  Falco plugins registry
  ☆86Updated this week
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆215Updated 2 months ago
• wolfi-dev / advisories
  Security advisory data for Wolfi
  ☆13Updated this week
• DataDog / dirtypipe-container-breakout-poc
  Container Excape PoC for CVE-2022-0847 "DirtyPipe"
  ☆76Updated 2 years ago
• raesene / container-security-site
  ☆91Updated 6 months ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 2 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆61Updated 2 months ago
• grafana / bugbounty
  Grafana Labs bug bounty
  ☆29Updated last month
• lobuhi / awrbacs
  AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
  ☆38Updated 6 months ago
• Rolix44 / Kubestroyer
  Kubernetes exploitation tool
  ☆355Updated 3 months ago