clholm's Stars
rupertbg/aws-public-account-ids
Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail
Hacking-the-Cloud/hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
p8952/bocker
Docker implemented in around 100 lines of bash
lizrice/containers-from-scratch
Writing a container in a few lines of Go code, as seen at DockerCon 2017 and on O'Reilly Safari
DataDog/KubeHound
Tool for building Kubernetes attack paths
jeffssh/CVE-2021-30860
Collection of materials relating to FORCEDENTRY
Tanq16/containerized-security-toolkit
Refer to this repository to use a containerized security workflow or build your custom workflow with these containers as a base.
praetorian-inc/konstellation
Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
BishopFox/cloudfox
Automating situational awareness for cloud penetration tests.
DataDog/managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
dnSpyEx/dnSpy
Unofficial revival of the well known .NET debugger and assembly editor, dnSpy
blackberry/Falco-bypasses
Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
krisnova/kush
Kubernetes Unhinged Shell 😎
kubernetes/sig-security
Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
praetorian-inc/noseyparker
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
mexbeb/esp32-midi-footswitch
An open-source fully programmable BLE and Wi-Fi MIDI footswitch
DSecurity/istio-security-restrictions-bypass
Detect and bypass Istio sidecar
praetorian-inc/fingerprintx
Standalone utility for service discovery on open ports!
jeffssh/tcpsd
TCP Stream Dump
PaloAltoNetworks/rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
praetorian-inc/snowcat
a tool to audit the istio service mesh
containerd/containerd
An open and reliable container runtime
mholt/caddy-l4
Layer 4 (TCP/UDP) app for Caddy
magnologan/awesome-k8s-security
A curated list for Awesome Kubernetes Security resources
praetorian-inc/gokart
A static analysis tool for securing Go code
amlweems/sklton-key
decrypt TLS traffic of arbitrary go binaries using SSLKEYLOGFILE debugger hook
GrrrDog/Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
jeffssh/gex
gex
BishopFox/badPods
A collection of manifests that will create pods with elevated privileges.
jeffssh/exploits
Mega repo for exploit development. Contains individual exploits and libraries to assist during exploitation