CDK
Penetration toolkit
A container penetration toolkit designed to simplify exploitation in various containers without relying on an operating system.
📦 Make security testing of K8s, Docker, and Containerd easier.
4k stars
69 watching
544 forks
Language: Go
last commit: 6 days ago
Linked from 2 awesome lists
blackhatcloud-nativecloud-native-securitycontainercontainer-escapecontainer-securitydockerexploitshacktoolshitbk8sk8s-penetration-toolkitkernel-exploitationkuberneteskubernetes-securitylinuxpenetrationpenetration-testing-toolsprivilege-escalationvulnerabilities
metarget/awesome-cloud-native-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 dominicbreuker/stego-toolkit | A collection of steganography tools for solving CTF challenges | 2,403 |
 containers/bubblewrap | Sandboxing tool to provide isolation and security for unprivileged users | 3,966 |
 docker/docker-bench-security | Automates security assessments of Docker container hosts and containers against best-practices | 9,146 |
 teamssix/container-escape-check | Detects potential vulnerabilities in Docker containers by checking for common escape methods | 556 |
 rhinosecuritylabs/ccat | A tool designed to test the security of container environments by simulating various attacks and vulnerabilities. | 589 |
 stealthcopter/deepce | A tool for discovering and exploiting vulnerabilities in Docker containers using a combination of enumeration and exploitation techniques. | 1,205 |
 deepfence/secretscanner | A tool that scans container images and file systems for sensitive data such as passwords and keys. | 3,134 |
 liamg/traitor | A tool for automatically exploiting vulnerabilities to gain elevated privileges on Linux systems | 6,689 |
 snyk/cli | A command-line tool that scans and monitors software development projects for security vulnerabilities. | 4,952 |
 anchore/grype | A tool for detecting vulnerabilities in container images and filesystems | 8,812 |
 owasp/nettacker | Automated tool for identifying vulnerabilities and gathering information about network services and systems. | 3,618 |
 linuxserver/docker-swag | A Docker container that sets up an Nginx webserver and reverse proxy with PHP support, including automated SSL certificate generation and renewal, as well as intrusion prevention. | 2,904 |
 gitleaks/gitleaks | Detects sensitive information in source code repositories | 17,964 |
 aquasecurity/trivy | Automatically scans software projects for vulnerabilities and misconfigurations to ensure security and compliance. | 23,679 |
 sleuthkit/sleuthkit | A collection of command line tools for analyzing digital evidence from various file systems and disk images. | 2,630 |