Added .gitignore file, ignoring .pyc files,

Also changed modules structure
2026-05-11 19:57:03 +00:00 · 2018-05-10 19:02:07 +03:00
parent 48e1307f1d
commit beb50d40bc
20 changed files with 62 additions and 42 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -0,0 +1 @@
+*.pyc
--- a/discovery/init.py
+++ b/discovery/init.py
@@ -0,0 +1,6 @@
+from .dashboard import KubeDashboard
+from .ports import PortDiscovery
+from .hosts import HostDiscovery
+
+__all__ = [HostDiscovery, KubeDashboard, PortDiscovery]
+
--- a/discovery/dashboard.py
+++ b/discovery/dashboard.py
@@ -0,0 +1,16 @@
+import events
+import requests
+
+class KubeDashboard(object):
+    def __init__(self, task):
+        self.task = task
+        self.host = task['host']
+        self.port = task['port'] or 80
+        pass
+
+    def execute(self):
+        # TODO: insert logic for detremining dashboard/insecure dashboard is there
+        events.handler.publish_event('KUBE_DASHBOARD', {'host': self.host, 'port': self.port})
+
+
+events.handler.subscribe_event('OPEN_PORT_30000', KubeDashboard)
--- a/modules/host_discovery.py
+++ b/modules/host_discovery.py
--- a/modules/port_discovery.py
+++ b/modules/port_discovery.py
@@ -1,8 +1,8 @@
 from socket import socket
 import events

-default_ports = [8001, 10250, 10255, 30000]

+default_ports = [8001, 10250, 10255, 30000]

 class PortDiscovery(object):
    def __init__(self, task):
@@ -11,9 +11,7 @@ class PortDiscovery(object):
    def execute(self):
        for single_port in default_ports:
            if self.test_connection(self.host, single_port):
-                events.handler.publish_event('OPEN_PORT', {'host': self.host, 'port': single_port})
-                events.handler.publish_event('OPEN_PORT_{port}'.format(port=single_port),
-                                     {'host': self.host, 'port': single_port})
+                events.handler.publish_event('OPEN_PORT_{port}'.format(port=single_port), {'host': self.host, 'port': single_port})

    @staticmethod
    def test_connection(host, port):
--- a/events.py
+++ b/events.py
@@ -16,8 +16,8 @@ class EventQueue(Queue, object):
            t.start()

    def publish_event(self, name, item):
+        safe_print('Event {} got published with {}'.format(name, item))
        if name in self.hooks:
-            safe_print('Event {} got published with {}'.format(name, item))
            for single_hook in self.hooks[name]:
                self.put(single_hook(item))

--- a/events.pyc
+++ b/events.pyc
--- a/hunting/init.py
+++ b/hunting/init.py
@@ -0,0 +1,4 @@
+from .dashboard import KubeDashboard
+
+__all__ = [KubeDashboard]
+
--- a/hunting/dashboard.py
+++ b/hunting/dashboard.py
@@ -0,0 +1,29 @@
+import events
+import requests
+from events import safe_print
+
+class KubeDashboard(object):
+    def __init__(self, task):
+        self.host = task['host']
+        self.port = task['port'] or 30000
+
+    def execute(self):
+        print("KUBEDASHBOARD At: {} {}".format(self.host, self.port))
+        if self.secured:    
+            safe_print("SECURED DASHBOARD")
+        else:
+            safe_print("INSECURE DASHBOARD")
+    
+    @property
+    def secured(self):
+        try:
+            r = requests.get("http://{host}:{port}/api/v1/node?itemsPerPage=100".format(host=self.host, port=self.port))
+        except requests.exceptions.ConnectionError:
+            return True
+
+        ret = r.json()
+        if 'listMeta' in ret:
+            return False
+        return True
+
+events.handler.subscribe_event('KUBE_DASHBOARD', KubeDashboard)
--- a/kube-hunter.py
+++ b/kube-hunter.py
@@ -1,11 +1,12 @@
-import modules
+import discovery
+import hunting
 import threading
 import time
 import sys

 def main():
    try:
-        modules.HostDiscovery({}).execute()    
+        discovery.HostDiscovery({}).execute()    
        # Blocking to see discovery output
        while(True): 
            time.sleep(1)
--- a/modules/init.py
+++ b/modules/init.py
@@ -1,6 +0,0 @@
-from .kube_open_dashboard import KubeOpenDashboard
-from .port_discovery import PortDiscovery
-from .host_discovery import HostDiscovery
-
-__all__ = [HostDiscovery, KubeOpenDashboard, PortDiscovery]
-
--- a/modules/init.pyc
+++ b/modules/init.pyc
--- a/modules/pycache/init.cpython-36.pyc
+++ b/modules/pycache/init.cpython-36.pyc
--- a/modules/pycache/host_discovery.cpython-36.pyc
+++ b/modules/pycache/host_discovery.cpython-36.pyc
--- a/modules/pycache/kube_open_dashboard.cpython-36.pyc
+++ b/modules/pycache/kube_open_dashboard.cpython-36.pyc
--- a/modules/pycache/port_discovery.cpython-36.pyc
+++ b/modules/pycache/port_discovery.cpython-36.pyc
--- a/modules/host_discovery.pyc
+++ b/modules/host_discovery.pyc
--- a/modules/kube_open_dashboard.py
+++ b/modules/kube_open_dashboard.py
@@ -1,29 +0,0 @@
-import events
-import requests
-
-class KubeOpenDashboard(object):
-    def __init__(self, task):
-        self.task = task
-        self.host = task['host']
-        self.port = task['port'] or 80
-        pass
-
-    def execute(self):
-        try:
-            r = requests.get("http://{host}:{port}/api/v1/node?itemsPerPage=100".format(host=self.host, port=self.port))
-        except requests.exceptions.ConnectionError:
-            return None
-
-        ret = r.json()
-        if 'listMeta' in ret:
-            events.safe_print("KubeOpenDashboard :: Open Dashboard!", self.host)
-
-
-events.handler.subscribe_event('OPEN_PORT_30000', KubeOpenDashboard)
-
-if __name__ == "__main__":
-    queue = list()
-    queue.append(KubeOpenDashboard({'host': '192.168.1.117', 'port': 30000}))
-    queue.append(KubeOpenDashboard({'host': '192.168.1.117', 'port': None}))
-    for i in queue:
-        i.execute()
--- a/modules/kube_open_dashboard.pyc
+++ b/modules/kube_open_dashboard.pyc
--- a/modules/port_discovery.pyc
+++ b/modules/port_discovery.pyc