xfhg / intercept
INTERCEPT / Policy as Code Auditing & Compliance
☆82Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for intercept
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- Some helpful Helm Charts for pentesters☆38Updated 5 years ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆103Updated 5 years ago
- General Open Architecture Security Questionnaire☆31Updated last year
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- Dependency Combobulator☆89Updated 10 months ago
- Kubernetes POC for utilizing write mount to /var/log for getting a root on the host☆92Updated 4 years ago
- Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …☆39Updated 2 years ago
- Intentionally vulnerable Go web app.☆42Updated 11 months ago
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆36Updated last month
- Security scanning & static analysis tool☆93Updated last month
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆26Updated last month
- A simple way to evaluate the security of your Kubernetes deployment against sets of best practices defined by various community sources☆29Updated 4 years ago
- Information about Kubernetes CVE-2020-8558, including proof of concept exploit.☆42Updated 4 years ago
- ☆29Updated 3 years ago
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆35Updated 2 years ago
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆54Updated 6 months ago
- A command line security audit tool for Amazon Web Services☆80Updated 5 years ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- Jekyll Files for cloudsecwiki.com☆49Updated 3 years ago
- Executes commands in a container on a kubelet endpoint that allows anonymous authentication (default)☆113Updated 5 years ago
- ☆24Updated 6 months ago
- Writeup of CVE-2017-1002101 with sample "exploit"/escape☆35Updated 6 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆160Updated last year
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago