CDK
Penetration toolkit
A container penetration toolkit designed to simplify exploitation in various containers without relying on an operating system.
📦 Make security testing of K8s, Docker, and Containerd easier.
4k stars
69 watching
548 forks
Language: Go
last commit: 2 months ago
Linked from 2 awesome lists
blackhatcloud-nativecloud-native-securitycontainercontainer-escapecontainer-securitydockerexploitshacktoolshitbk8sk8s-penetration-toolkitkernel-exploitationkuberneteskubernetes-securitylinuxpenetrationpenetration-testing-toolsprivilege-escalationvulnerabilities
metarget/awesome-cloud-native-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 dominicbreuker/stego-toolkit | A collection of steganography tools for solving CTF challenges | 2,425 |
 containers/bubblewrap | Sandboxing tool to provide isolation and security for unprivileged users | 4,010 |
 docker/docker-bench-security | Automates security assessments of Docker container hosts and containers against best-practices | 9,195 |
 teamssix/container-escape-check | Detects potential vulnerabilities in Docker containers by checking for common escape methods | 560 |
 rhinosecuritylabs/ccat | A tool designed to test the security of container environments by simulating various attacks and vulnerabilities. | 595 |
 stealthcopter/deepce | A tool for discovering and exploiting vulnerabilities in Docker containers using a combination of enumeration and exploitation techniques. | 1,220 |
 deepfence/secretscanner | A tool that scans container images and file systems for sensitive data such as passwords and keys. | 3,146 |
 liamg/traitor | A tool for automatically exploiting vulnerabilities to gain elevated privileges on Linux systems | 6,735 |
 snyk/cli | A command-line tool that scans and monitors software development projects for security vulnerabilities. | 4,979 |
 anchore/grype | A tool for detecting vulnerabilities in container images and filesystems | 8,970 |
 owasp/nettacker | Automated tool for identifying vulnerabilities and gathering information about network services and systems. | 3,700 |
 linuxserver/docker-swag | An all-in-one web application gateway with Nginx, PHP, and security features | 2,941 |
 gitleaks/gitleaks | Detects sensitive information in version control systems and source code files | 18,165 |
 aquasecurity/trivy | A comprehensive security scanner that identifies vulnerabilities and misconfigurations in various targets such as containers, code repositories, and infrastructure | 24,010 |
 sleuthkit/sleuthkit | A collection of command line tools for analyzing digital evidence from various file systems and disk images. | 2,648 |