gcp-dhcp-takeover-code-exec
DHCP takeover exploit
A proof-of-concept code execution project exploiting an unpatched vulnerability in Google Compute Engine's ISC DHCP software to gain root access via SSH keys added by the google_guest_agent.
Google Compute Engine (GCE) VM takeover via DHCP flood - gain root access by getting SSH keys added by google_guest_agent
534 stars
20 watching
35 forks
Language: Go
last commit: over 4 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 c0r0n3r/dheater | An implementation of a proof-of-concept attack exploiting a vulnerability in Diffie-Hellman key exchange for denial-of-service | 187 |
 macmod/stars | Identifies potential subdomain takeover issues in cloud DNS environments | 49 |
 guaychou/gcs-proxy | Downloads files from Google Cloud Storage using basic authentication without requiring the storage URL | 3 |
 r3dxpl0it/cve-2018-4407 | Exploits a heap buffer overflow vulnerability in the XNU operating system kernel to cause a denial-of-service attack on iOS and macOS devices. | 35 |
 actions-hub/gcloud | A GitHub Action for interacting with Google Cloud Platform | 232 |
 googlecloudplatform/aactl | Utility to import and manage vulnerabilities and attestations from container images into Google Cloud's Artifact Analysis service. | 10 |
 jarlefosen/alfred-gcloud-shortcuts | Tools for automating interactions with Google Cloud Platform products | 51 |
 gordalina/hush_gcp_secret_manager | Provides access to Google Cloud Platform Secret Manager secrets in an Elixir application | 18 |
 mdlayher/dhcp6 | A Go implementation of the DHCPv6 protocol | 77 |
| irsl/jackson-rce-via-spel | A proof-of-concept project demonstrating exploitation of a vulnerability in Jackson-databind via Spring application contexts and expressions. | 121 |
 rhinosecuritylabs/gcp-iam-privilege-escalation | A collection of GCP IAM privilege escalation methods and their associated tools | 351 |
 denizparlak/hayat | An auditing and hardening script for Google Cloud Platform resources. | 79 |
 lrstanley/girc | A flexible IRC client library for Go, focusing on simplicity and event-based triggering. | 139 |
 marcin-kolda/gcp-iam-collector | A tool that collects and visualizes IAM permissions from Google Cloud Platform projects. | 50 |
 holepunchto/dht-rpc | Allows remote IP and firewall detection, adds commands to a distributed hash table (DHT), and streams queries and updates over the DHT. | 197 |