wavestone-cdt/hadoop-attack-library wavestone-cdt/hadoop-attack-library

  • Stars
    star
    254
  • Rank 160,264 (Top 4 %)
  • Language
    Python
  • Created over 7 years ago
  • Updated about 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
wavestone-cdt/hadoop-attack-library
github

wavestone-cdt

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A collection of pentest tools and resources targeting Hadoop environments

Hadoop Attack Library

Description

A collection of pentest tools and resources targeting Hadoop environments

Outline

This repository is composed of two kind of information and organised accordingly:

  • Tools, Techniques and Procedures to attack an Hadoop environment, in the Tools Techniques and Procedures folder
  • Key vulnerabilities on Hadoop components (Hadoop Common, HDFS, YARN etc.), in the Hadoop components vulnerabilities folder
  • Key vulnerabilities in third-party components often used in Hadoop environments, in the Third-party modules vulnerabilities folder

Practical hands-on

If you quickly want to get your hands into the resources provided here, you might read the following resources in that specific order:

  1. Set up an Hadoop attack environment
  2. Get the target environment configuration
  3. Map the infrastructure
  4. Browse the HDFS datalake
  5. Execute remote commands

Copyright and license

All product names, logos, and brands are property of their respective owners.
All resources published in the Hadoop Attack Library are free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. See the GNU General Public License for more details.

Disclaimer

Resources provided here are the result of security research and should not be used for illegal purposes.
Wavestone and CERT-W cannot be held responsible for any misuse or damage from any material provided here.

Contact

  • Thomas Debize < thomas.debize at wavestone d0t com >
  • Mahdi Braik < mahdi.braik at wavestone d0t com >
  • CERT-W < cert at wavestone d0t com >

More Repositories

1

EDRSandblast

C
1,441
star
2

abaddon

Python
333
star
3

dyode

A low-cost, DIY data diode for ICS
Python
176
star
4

wavecrack

Wavestone's web interface for password cracking with hashcat
Python
164
star
5

AD-security-workshop

Resources for our Active Directory security workshops
139
star
6

powerpxe

Powershell script to extract information from boot PXE
PowerShell
130
star
7

DEFCON-CICD-pipelines-workshop

HCL
92
star
8

Invoke-CleverSpray

Password Spraying Script detecting current and previous passwords of Active Directory User
PowerShell
63
star
9

opcua-scan

Tooling for discovery & information gathering from OPC-UA servers
Python
17
star
10

1-2-3-Cyber

17
star
11

mainframe-attack-library

Collection of scripts to p*wn mainframes
Python
14
star
12

s7-get

Tools to interact with Siemens PLCs
Python
11
star
13

fun-with-modbus-0x5a

Material from ICS Village talk at DEFCON 25
Ruby
10
star
14

bhasia23-opcuhack

Slides & content for our Arsenal lab session at BlackHat Asia 2023
10
star
15

plc-code-security

Experiments with the Top 20 Secure PLC Coding Practices
7
star
16

MISC-AD-trusts-relationships

Lab files & scripts for our articles in MISC regarding Active Directory trusts relationships
PowerShell
7
star
17

bheu22-capture-the-train

Slides and code snippets for the Arsenal demo lab session at BlackHat Europe 2022
6
star
18

Malware-Development-On-Secured-Environment

C
4
star
19

dc32-securing-ics-101

3
star
20

jumping-from-cloud-to-on-premises-and-the-other-way-around

2
star
21

dc32-hack-the-connected-plant

Slides from our workshop at DEFCON 32 on "Hacking the connected plant"
2
star