ctrsploit: A penetration toolkit for container environment
ctrsploit [kənˈteɪnər splɔɪt], follows sploit-spec
# Download
wget -q https://github.com/ctrsploit/ctrsploit/releases/latest/download/ctrsploit_linux_amd64 -O /usr/bin/ctrsploit
chmod +x /usr/bin/ctrsploit
# Check what's exploitable
ctrsploit checksec auto
# Run an exploit
ctrsploit exploit cve-2022-0847
Vul — Vulnerability Modules
Modules are grouped by component or configuration type. Each module may
support checksec (detection) and/or exploit.
Legend
✔️
Supported
⭕
Partial
🐛
Known bug
❌
Not supported
-
Not applicable
vul
desc
check
exploit
fork-bomb
fork bomb causes denial of service when resource limits or cgroup configs are unsafe
✔️
✔️
caps
abuse dangerous capabilities in container
-
-
└─shocker
escape by CAP_DAC_READ_SEARCH
✔️
✔️
└─sys_admin
abuse cap_sys_admin
✔️
-
└─release_agent
escape via cgroups v1 release_agent
✔️
✔️
└─ebpf
escape by loading evil eBPF programs into the kernel
✔️
-
└─bash
inject malicious commands into host bash processes
✔️
✔️
└─cron
inject malicious job into host's crontab
✔️
✔️
└─execve
hijack execve syscall
✔️
✔️
└─kubelet
leak service account token from kubelet
✔️
✔️
└─bpf
load evil bpf programs via cap_bpf
-
-
└─sys_ptrace
abuse cap_sys_ptrace
✔️
-
└─pid_host
ptrace host processes
✔️
✔️
└─cve-2016-8867
ambient capabilities allow local users to gain privileges
✔️
✔️
naked
containers running without seccomp, AppArmor, or SELinux
✔️
-
shared-socket
abuse runtime's api via shared socket
-
-
└─docker.sock
escape by shared docker.sock
✔️
✔️
kubeconfig
check kubeconfig related vulnerabilities
-
-
└─user-exec
loading an untrusted kubeconfig can execute arbitrary client-side commands via users[].user.exec
✔️
-
sa-token
check service account token related vulnerabilities
-
-
└─secret
check if service account token can access Kubernetes Secrets
✔️
-
└─policy
check if service account token has dangerous permissions
✔️
-
namespace
shared host namespaces break the isolations
-
-
└─net
shared host network namespace
✔️
❌
└─pid
shared host pid namespace
-
-
└─proc_root
escape via /proc/[pid]/root
✔️
✔️
vul
desc
check
exploit
cve-2016-8867
ambient capabilities allow local users to gain privileges
✔️
✔️
cve-2019-5736
escape by overwrite runc executable via /proc/self/exe
✔️
-
└─exec
exploit via runc exec process
✔️
✔️
└─image
exploit via malicious image
✔️
✔️
cve-2019-16884
❌
✔️
cve-2023-28642
❌
❌
cve-2024-21626
❌
❌
cve-2025-31133
❌
❌
cve-2025-52565
❌
❌
cve-2025-52881
❌
❌
vul
desc
check
exploit
cve-2020-15157
❌
✔️
cve-2020-15257
abuse containerd-shim abstract unix socket
✔️
✔️
cve-2024-40635
bypass runAsNonRoot via integer overflow
✔️
✔️
cve-2025-47290
modify host file during image pull
✔️
✔️
vul
desc
check
exploit
docker.sock
escape by shared docker.sock
✔️
✔️
cve-2016-9962
❌
❌
cve-2019-14271
❌
✔️
cve-2021-41091
❌
✔️
cve-2021-21285
❌
✔️
vul
desc
check
exploit
cve-2021-22555
❌
✔️
cve-2021-3493
local privilege escalation in Ubuntu OverlayFS
❌
❌
cve-2022-0492
escape via cgroup release_agent without CAP_SYS_ADMIN
✔️
✔️
cve-2022-0847
local privilege escalation and container escape via Dirty Pipe
⭕
✔️
cve-2026-31431
local privilege escalation and container escape via AF_ALG AEAD
⭕
✔️
cve-2026-43284
local privilege escalation and container escape via xfrm ESP Dirty Frag
⭕
✔️
cve-2026-43500
local privilege escalation and container escape via RxRPC/rxkad Dirty Frag
⭕
✔️
cve-2026-46300
local privilege escalation and container escape via xfrm ESP-in-TCP Fragnesia
⭕
✔️
vul
desc
check
exploit
cve-2017-1002101
❌
✔️
cve-2020-8555
❌
✔️
cve-2020-8558
access 127.0.0.1 services from adjacent hosts
✔️
✔️
cve-2021-25741
kubelet symlink exchange
✔️
✔️
vul
desc
check
exploit
cve-2024-0132
gpu container escape via nvidia-container-toolkit CVE-2024-0132
⭕
✔️
cve-2025-23266
gpu container escape via nvidia-container-toolkit CVE-2025-23266 by running a malicious container image
⭕
✔️
cve-2025-23267
❌
❌
cve-2025-23359
❌
❌
vul
desc
check
exploit
cve-2025-62725
path traversal in Docker Compose OCI artifacts allows arbitrary file write via malicious registry
✔️
✔️
vul
desc
check
exploit
cve-2024-23650
dos buildkit via OCI exporter by sending a crafted request
✔️
✔️
vul
desc
check
exploit
cve-2021-25748
ingress-nginx path validation bypass vulnerability allows credential leakage through newline injection
✔️
✔️
vul
desc
check
exploit
cve-2022-39253
read host file during docker build via git CVE-2022-39253
⭕
✔️
env — Environment Gathering
ctrsploit env auto # auto-detect container environment
ctrsploit env where # check if in container and what type
ctrsploit env capability # show capabilities
ctrsploit env seccomp # show seccomp status
ctrsploit env services # discover cluster services without API access
For full env subcommands and flags, run ctrsploit env --help.
See CONTRIBUTING.md .