gcp-dhcp-takeover-code-exec
DHCP takeover exploit
A proof-of-concept code execution project exploiting an unpatched vulnerability in Google Compute Engine's ISC DHCP software to gain root access via SSH keys added by the google_guest_agent.
Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent
534 stars
20 watching
35 forks
Language: Go
last commit: over 3 years ago Related projects:
Repository | Description | Stars |
---|---|---|
| An implementation of a proof-of-concept attack exploiting a vulnerability in Diffie-Hellman key exchange for denial-of-service | 187 |
| Identifies potential subdomain takeover issues in cloud DNS environments | 49 |
| Downloads files from Google Cloud Storage using basic authentication without requiring the storage URL | 3 |
| Exploits a heap buffer overflow vulnerability in the XNU operating system kernel to cause a denial-of-service attack on iOS and macOS devices. | 35 |
| A GitHub Action for interacting with Google Cloud Platform | 232 |
| Utility to import and manage vulnerabilities and attestations from container images into Google Cloud's Artifact Analysis service. | 10 |
| Tools for automating interactions with Google Cloud Platform products | 51 |
| Provides access to Google Cloud Platform Secret Manager secrets in an Elixir application | 18 |
| A Go implementation of the DHCPv6 protocol | 77 |
| A proof-of-concept project demonstrating exploitation of a vulnerability in Jackson-databind via Spring application contexts and expressions. | 121 |
| A collection of GCP IAM privilege escalation methods and their associated tools | 351 |
| An auditing and hardening script for Google Cloud Platform resources. | 79 |
| A flexible IRC client library for Go, focusing on simplicity and event-based triggering. | 139 |
| A tool that collects and visualizes IAM permissions from Google Cloud Platform projects. | 50 |
| Allows remote IP and firewall detection, adds commands to a distributed hash table (DHT), and streams queries and updates over the DHT. | 197 |