github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-10 19:26:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Hunt for email addresses in certificates

Browse Source
This commit is contained in:
Liz Rice
2018-07-13 13:22:01 -04:00
parent 6c103847a2
commit 5e3ffcc7af
1 changed files with 36 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
src/modules/hunting/certificates.py Normal file
View File

@@ -0,0 +1,36 @@
from ...core.types import Hunter, KubernetesCluster
from ...core.events import handler
from ...core.events.types import Vulnerability, Event, OpenPortEvent
import ssl
import logging
import base64
import re
from socket import socket
email_pattern = re.compile(r"([a-z0-9]+@[a-z0-9]+\.[a-z0-9]+)")
class CertificateEmail(Vulnerability, Event):
"""Certificate includes an email address"""
def __init__(self, email):
Vulnerability.__init__(self, KubernetesCluster, "Certificate includes email address: {0}".format(email))
@handler.subscribe(OpenPortEvent)
class CertificateDiscovery(Hunter):
def __init__(self, event):
self.event = event
def execute(self):
try:
addr = (str(self.event.host), self.event.port)
cert = ssl.get_server_certificate(addr)
except ssl.SSLError as e:
# If the server doesn't offer SSL on this port we won't get a certificate
return
c = cert.strip(ssl.PEM_HEADER).strip(ssl.PEM_FOOTER)
certdata = base64.decodestring(c)
emails = re.findall(email_pattern, certdata)
for email in emails:
self.publish_event( CertificateEmail(email) )