Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/DataDog/security-labs-pocs
Proof of concept code for Datadog Security Labs referenced exploits.
https://github.com/DataDog/security-labs-pocs
Last synced: about 2 months ago
JSON representation
Proof of concept code for Datadog Security Labs referenced exploits.
- Host: GitHub
- URL: https://github.com/DataDog/security-labs-pocs
- Owner: DataDog
- License: other
- Created: 2022-04-20T19:13:59.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2023-10-13T11:32:57.000Z (over 1 year ago)
- Last Synced: 2024-11-16T02:04:57.273Z (2 months ago)
- Language: C
- Size: 27.7 MB
- Stars: 417
- Watchers: 40
- Forks: 58
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
Awesome Lists containing this project
- awesome-hacking-lists - DataDog/security-labs-pocs - Proof of concept code for Datadog Security Labs referenced exploits. (C)
README
Datadog Security Labs Research and Proof of Concept Code
===This repository contains information, exploits, malware samples, and scripts from Datadog Security Labs.
## Goal
This repository aims at providing proof of concept exploits, malware samples and technical demos to help the community respond to threats. Code from this repository might be used to:
* Improve Detections
* Continue additional research on Tactics, Techniques and Procedures (TTPs)
* Discover additional exploits## Proofs of Concept
- [Dirty Pipe Container Breakout](./proof-of-concept-exploits/dirtypipe-container-breakout/)
- [Exploitation and Sample Vulnerable Application of the JWT Null Signature Vulnerability (CVE-2022-21449)](./proof-of-concept-exploits/jwt-null-signature-vulnerable-app)
- [Spring Core RCE aka Spring4shell (CVE-2022-22965)](./proof-of-concept-exploits/spring4shell)
- [Confluence CVE-2022-26134 OGNL Vulnerability](./proof-of-concept-exploits/confluence-cve-2022-26134)
- [OpenSSL punycode Vulnerability (CVE-2022-3602)](./proof-of-concept-exploits/openssl-punycode-vulnerability)
- [OverlayFS privilege escalation vulnerability CVE-2023-0386](./proof-of-concept-exploits/overlayfs-cve-2023-0386/)
- [Confluence CVE-2023-22515 vulnerability](./proof-of-concept-exploits/confluence-cve-2023-22515/)## Stay Tuned!
We'll create a new GitHub release for every new proof of concept in this repository. To make sure you don't miss it, watch new releases!
![image](https://user-images.githubusercontent.com/136675/165481082-5032369b-50dc-4d4a-b6de-8a8a2527fb04.png)