Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/DataDog/security-labs-pocs

Proof of concept code for Datadog Security Labs referenced exploits.
https://github.com/DataDog/security-labs-pocs

Last synced: about 1 month ago
JSON representation

Proof of concept code for Datadog Security Labs referenced exploits.

Host: GitHub
URL: https://github.com/DataDog/security-labs-pocs
Owner: DataDog
License: other
Created: 2022-04-20T19:13:59.000Z (over 2 years ago)
Default Branch: main
Last Pushed: 2023-10-13T11:32:57.000Z (11 months ago)
Last Synced: 2024-06-06T23:44:04.096Z (3 months ago)
Language: C
Size: 27.7 MB
Stars: 413
Watchers: 39
Forks: 56
Open Issues: 0
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Awesome Lists containing this project

awesome-hacking-lists - DataDog/security-labs-pocs - Proof of concept code for Datadog Security Labs referenced exploits. (C)

README

        Datadog Security Labs Research and Proof of Concept Code

===

This repository contains information, exploits, malware samples, and scripts from Datadog Security Labs.

## Goal

This repository aims at providing proof of concept exploits, malware samples and technical demos to help the community respond to threats. Code from this repository might be used to:

* Improve Detections

* Continue additional research on Tactics, Techniques and Procedures (TTPs)

* Discover additional exploits

## Proofs of Concept

- [Dirty Pipe Container Breakout](./proof-of-concept-exploits/dirtypipe-container-breakout/)

- [Exploitation and Sample Vulnerable Application of the JWT Null Signature Vulnerability (CVE-2022-21449)](./proof-of-concept-exploits/jwt-null-signature-vulnerable-app)

- [Spring Core RCE aka Spring4shell (CVE-2022-22965)](./proof-of-concept-exploits/spring4shell)

- [Confluence CVE-2022-26134 OGNL Vulnerability](./proof-of-concept-exploits/confluence-cve-2022-26134)

- [OpenSSL punycode Vulnerability (CVE-2022-3602)](./proof-of-concept-exploits/openssl-punycode-vulnerability)

- [OverlayFS privilege escalation vulnerability CVE-2023-0386](./proof-of-concept-exploits/overlayfs-cve-2023-0386/)

- [Confluence CVE-2023-22515 vulnerability](./proof-of-concept-exploits/confluence-cve-2023-22515/)

## Stay Tuned!

We'll create a new GitHub release for every new proof of concept in this repository. To make sure you don't miss it, watch new releases!

![image](https://user-images.githubusercontent.com/136675/165481082-5032369b-50dc-4d4a-b6de-8a8a2527fb04.png)