cdk-escape
OfficialEvaluate container escape risks and map paths
Authorwgpsec
Version1.0.0
Installs0
System Documentation
CDK 帮助安全研究者在进入容器后快速评估逃逸风险、识别潜在逃逸点并进行信息收集。
What problem does it solve?
在进入容器后,CDK 通过自动化评估容器环境、发现逃逸途径和敏感信息点,降低探索成本。
Core Features & Use Cases
- 环境评估能力:自动检测运行时类型、权限、挂载点等关键信息,快速绘制逃逸路径。
- 多技术探测:覆盖特权容器、capabilities、Docker socket、K8s 服务账户等逃逸向量的枚举。
- Use Case:在渗透测试中,拿到容器 shell 后立即执行 CDK 评估,以明确后续的逃逸或信息收集方向。
Quick Start
在获得容器 shell 后运行 CDK 评估以识别潜在逃逸路径。
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: cdk-escape Download link: https://github.com/wgpsec/AboutSecurity/archive/main.zip#cdk-escape Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.