GitHub - ctrsploit/ctrsploit: A penetration toolkit for container environment · GitHub
Skip to content

ctrsploit/ctrsploit

Repository files navigation

ctrsploit: A penetration toolkit for container environment

ctrsploit [kənˈteɪnər splɔɪt], follows sploit-spec

Quick Start

# Download
wget -q https://github.com/ctrsploit/ctrsploit/releases/latest/download/ctrsploit_linux_amd64 -O /usr/bin/ctrsploit
chmod +x /usr/bin/ctrsploit

# Check what's exploitable
ctrsploit checksec auto

# Run an exploit
ctrsploit exploit cve-2022-0847

Vul — Vulnerability Modules

Modules are grouped by component or configuration type. Each module may support checksec (detection) and/or exploit.

Legend
✔️ Supported
Partial
🐛 Known bug
Not supported
- Not applicable

config

vul desc check exploit
fork-bomb fork bomb causes denial of service when resource limits or cgroup configs are unsafe ✔️ ✔️
caps abuse dangerous capabilities in container - -
└─shocker escape by CAP_DAC_READ_SEARCH ✔️ ✔️
└─sys_admin abuse cap_sys_admin ✔️ -
 └─release_agent escape via cgroups v1 release_agent ✔️ ✔️
 └─ebpf escape by loading evil eBPF programs into the kernel ✔️ -
  └─bash inject malicious commands into host bash processes ✔️ ✔️
  └─cron inject malicious job into host's crontab ✔️ ✔️
  └─execve hijack execve syscall ✔️ ✔️
  └─kubelet leak service account token from kubelet ✔️ ✔️
└─bpf load evil bpf programs via cap_bpf - -
└─sys_ptrace abuse cap_sys_ptrace ✔️ -
 └─pid_host ptrace host processes ✔️ ✔️
└─cve-2016-8867 ambient capabilities allow local users to gain privileges ✔️ ✔️
naked containers running without seccomp, AppArmor, or SELinux ✔️ -
shared-socket abuse runtime's api via shared socket - -
└─docker.sock escape by shared docker.sock ✔️ ✔️
kubeconfig check kubeconfig related vulnerabilities - -
└─user-exec loading an untrusted kubeconfig can execute arbitrary client-side commands via users[].user.exec ✔️ -
sa-token check service account token related vulnerabilities - -
└─secret check if service account token can access Kubernetes Secrets ✔️ -
└─policy check if service account token has dangerous permissions ✔️ -
namespace shared host namespaces break the isolations - -
└─net shared host network namespace ✔️
└─pid shared host pid namespace - -
 └─proc_root escape via /proc/[pid]/root ✔️ ✔️

runc

vul desc check exploit
cve-2016-8867 ambient capabilities allow local users to gain privileges ✔️ ✔️
cve-2019-5736 escape by overwrite runc executable via /proc/self/exe ✔️ -
└─exec exploit via runc exec process ✔️ ✔️
└─image exploit via malicious image ✔️ ✔️
cve-2019-16884 ✔️
cve-2023-28642
cve-2024-21626
cve-2025-31133
cve-2025-52565
cve-2025-52881

containerd

vul desc check exploit
cve-2020-15157 ✔️
cve-2020-15257 abuse containerd-shim abstract unix socket ✔️ ✔️
cve-2024-40635 bypass runAsNonRoot via integer overflow ✔️ ✔️
cve-2025-47290 modify host file during image pull ✔️ ✔️

docker

vul desc check exploit
docker.sock escape by shared docker.sock ✔️ ✔️
cve-2016-9962
cve-2019-14271 ✔️
cve-2021-41091 ✔️
cve-2021-21285 ✔️

kernel

vul desc check exploit
cve-2021-22555 ✔️
cve-2021-3493 local privilege escalation in Ubuntu OverlayFS
cve-2022-0492 escape via cgroup release_agent without CAP_SYS_ADMIN ✔️ ✔️
cve-2022-0847 local privilege escalation and container escape via Dirty Pipe ✔️
cve-2026-31431 local privilege escalation and container escape via AF_ALG AEAD ✔️
cve-2026-43284 local privilege escalation and container escape via xfrm ESP Dirty Frag ✔️
cve-2026-43500 local privilege escalation and container escape via RxRPC/rxkad Dirty Frag ✔️
cve-2026-46300 local privilege escalation and container escape via xfrm ESP-in-TCP Fragnesia ✔️

kubernetes

vul desc check exploit
cve-2017-1002101 ✔️
cve-2020-8555 ✔️
cve-2020-8558 access 127.0.0.1 services from adjacent hosts ✔️ ✔️
cve-2021-25741 kubelet symlink exchange ✔️ ✔️

nvidia-container-toolkit

vul desc check exploit
cve-2024-0132 gpu container escape via nvidia-container-toolkit CVE-2024-0132 ✔️
cve-2025-23266 gpu container escape via nvidia-container-toolkit CVE-2025-23266 by running a malicious container image ✔️
cve-2025-23267
cve-2025-23359

docker-compose

vul desc check exploit
cve-2025-62725 path traversal in Docker Compose OCI artifacts allows arbitrary file write via malicious registry ✔️ ✔️

buildkit

vul desc check exploit
cve-2024-23650 dos buildkit via OCI exporter by sending a crafted request ✔️ ✔️

ingress-nginx

vul desc check exploit
cve-2021-25748 ingress-nginx path validation bypass vulnerability allows credential leakage through newline injection ✔️ ✔️

git

vul desc check exploit
cve-2022-39253 read host file during docker build via git CVE-2022-39253 ✔️

env — Environment Gathering

ctrsploit env auto       # auto-detect container environment
ctrsploit env where      # check if in container and what type
ctrsploit env capability # show capabilities
ctrsploit env seccomp    # show seccomp status
ctrsploit env services   # discover cluster services without API access

For full env subcommands and flags, run ctrsploit env --help.

Contributing

See CONTRIBUTING.md.

About

A penetration toolkit for container environment

Topics

Resources

Contributing

Stars

Watchers

Forks

Packages

Contributors