github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-11 11:47:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

WIP, Got to go :)

Browse Source 
Only have to finish testing the *active hunters'
This commit is contained in:
oriagmon
2018-10-22 23:01:51 +03:00
parent ab9505a226
commit 735f5b77dd
1 changed files with 1 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/modules/hunting/apiserver.py
View File

@@ -473,8 +473,6 @@ class AccessApiServerViaServiceAccountTokenActive(ActiveHunter):
res = requests.post("https://{host}:{port}/api/v1/namespaces".format(
host=self.event.host, port=self.event.port),
verify=False, data=json_namespace, headers=headers)
print res.status_code
print res.content
if res.status_code not in [200, 201, 202]: return False
parsed_content = json.loads(res.content.replace('\'', '\"'))
self.created_new_namespace_name_evidence = parsed_content['metadata']['namespace']
@@ -497,6 +495,7 @@ class AccessApiServerViaServiceAccountTokenActive(ActiveHunter):
return True
def create_a_cluster_role(self):
#TODO: data={clusterrole json}
try:
res = requests.post("https://{host}:{port}/apis/rbac.authorization.k8s.io/v1/clusterroles".format(
host=self.event.host, port=self.event.port),