misconfiguration

There are 21 repositories under misconfiguration topic.

  • aquasecurity/trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

    Language:Go22.3k1722.6k2.2k
  • tfsec

    aquasecurity/tfsec

    Tfsec is now part of Trivy

    Language:Go6.6k710534
  • SUDO_KILLER

    TH3xACE/SUDO_KILLER

    A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

    Language:Shell2.2k5011246

  • aquasecurity/trivy-operator

    Kubernetes-native security toolkit

    Language:Go1.1k6626193

  • nickvourd/Windows-Local-Privilege-Escalation-Cookbook

    Windows Local Privilege Escalation Cookbook

    Language:PowerShell879111143

  • firefart/stunner

    Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.

    Language:Go731151741

  • aquasecurity/chain-bench

    An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

    Language:Go713124463

  • b3rito/yotter

    yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage

    Language:Shell1237020

  • Vinum-Security/yandex-cloud-security

    ⛅️🔐 Security Requirements for Yandex.Cloud configuration: IAM, network access, key management, Kubernetes, audit logs.

    37104

  • fatihtokus/scan2html

    A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.

    Language:HTML364418

  • padok-team/yatas-aws

    Plugin for YATAS that audits AWS accounts for misconfiguration and security issues

    Language:Go147113

  • 4lch3mis7/XGiF

    A tool to find .git folder exposed due to server misconfiguration.

    Language:Go7102

  • machine1337/cors_scanner

    Fast CORS Misconfiguration Scanner

    Language:Shell6103

  • cehuda1/env-breaker

    Env Breaker adalah Pemindaian dan deteksi file .env pada situs-situs target. Skrip ini membantu mengidentifikasi kemungkinan kebocoran informasi sensitif yang terkait dengan file .env

    Language:PHP3100

  • padok-team/yatas-gcp

    Plugin for YATAS that audits GCP projects for misconfiguration and security issues

    Language:Go3530

  • K3ysTr0K3R/DroidSniper

    DroidSniper - Misconfigured Android Debug Bridge Scanner

    Language:Python2101

  • Rozan312/Cloud-Service-Hunting

    This script automate exploit only cloud service

    Language:Python200

  • Archive-Puma/nucleo

    ⚛️ nucleo is a script that checks common vulnerabilities and security misconfigurations, strongly inspired by nuclei.

    Language:Shell1200

  • fagci/gmf

    Global Misconfig Finder (web)

    Language:Python120

  • ShackWove/NetGun

    NetGun is a free and open source tool for port scanning, services enumeration, misconfigurations testing and CVE research. This is only for testing, official repository: https://github.com/MyCr4ck/NetGun_Classe03

    Language:HTML1000

  • gsscoder/configinsights

    Azure services configuration analyzer

    Language:C#0301