• Stars
    star
    133
  • Rank 272,600 (Top 6 %)
  • Language
    Go
  • License
    MIT License
  • Created over 6 years ago
  • Updated 3 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A collection of scripts, and tips and tricks for hacking k8s clusters and containers.

Harpoon

    __  __                                 
   / / / /___ __________  ____  ____  ____ 
  / /_/ / __ `/ ___/ __ \/ __ \/ __ \/ __ \
 / __  / /_/ / /  / /_/ / /_/ / /_/ / / / /
/_/ /_/\__,_/_/  / .___/\____/\____/_/ /_/ 
                /_/       ,   ,
    ~~~~~~~~~~~~~~~~~~~~~~~"o"~~~~
            ____________     o
    	 _--            --_ o
        /       ___      __\ o
       / _         _\    \__o 
      / / |              X  |
     / /   \	           /
    / _ \   \             /
    \/ \/    -.____ ____.-

A collection of tips and tricks for container and container orchestration hacking.

TODO: write documentation

More Repositories

1

pewapt101

Professionally Evil Web Application Penetration Testing 101
140
star
2

C4

Cyberdelia, a Collection of Command and Control frameworks
Shell
66
star
3

client-side-attacks-lab

Lab Environment for learning client-side attacks such as CSRF, Clickjacking, XSS, and CORS abuse.
HTML
21
star
4

bloodhound-elementary

Command line tool for analyzing .json files generated by bloodhound.py or sharphound for use in Bloodhound.
Python
20
star
5

x86_asm

x86 Assembly Code Examples for Blog Posts
Assembly
15
star
6

LD_PRELOAD-rand-Hijack-Example

Code samples to go along with the blog post on using LD_PRELOAD to hijack rand() in a number guessing game.
C
11
star
7

DVFPS

A Damn Vulnerable FPS game built using Godot
GDScript
9
star
8

Pequod

Lab VM environment for Container Hacking.
Shell
9
star
9

nmap_oui_update

A script to download OUI data from the IEEE and parse it into the nmap-mac-prefixes file so Nmap has the latest OUI data.
Python
9
star
10

bash_tricks

a github repo that will be used for teaching bash optimizations in a youtube series
9
star
11

LD_PRELOAD-run-at-load-time

Code samples to go along with the blog post on how to run code at load/unload time when using LD_PRELOAD to inject libraries.
C
8
star
12

Python4PEPentesters-exercises

Exercises for the Python for Professionally Evil Pentesters Class
Python
6
star
13

Python4PEPentesters

Python for Professionally Evil Pentesters
Shell
6
star
14

SameSiteAttackDemo

A simple demo web app built with Svelte + Restify that is meant to demonstrate security aspects regarding the SameSite cookie flag.
JavaScript
5
star
15

DVMMO

Damn Vulnerable MMO; an mmo game that is deliberately vulnerable and maybe just maybe fun to play.
GDScript
5
star
16

csik

Client Script Injection Kit
Python
4
star
17

k8s-labs

JavaScript
4
star
18

LD_PRELOAD-accept-backdoor

Code samples to go along with the blog post on how to create an LD_PRELOAD backdoor hooking accept()
C
3
star
19

CVE-2021-38295-PoC

A simple Python proof of concept for CVE-2021-38295.
Python
3
star
20

cookie-monster

Coming soon...
JavaScript
2
star
21

PENT

Shell
2
star
22

edit_leaked_file_descriptor

An all-in-one tool to edit a leaked file descriptor in SetUID binaries.
C
2
star
23

d0hnut

DNS over HTTPS Security Lab
Shell
1
star
24

static-analysis-ttp

Shell
1
star
25

container-escape-labs

Some container escape labs
Batchfile
1
star