github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-26 19:13:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
380 Commits 55 Branches 19 Tags
3836a8f8c4011f178a67684f458716b57ca3589d
Commit Graph

242 Commits

Author SHA1 Message Date
Ori Agmon
3836a8f8c4 Shallow detection cve 2018 1002105 (#67) 
* added the CVE hunter, haven't checked the hunter yet

* fixed illegal name for import file

* Completed & Tested

* subnet scan

* Updated description

* Updated description

* Updated description
 2018-12-06 00:47:16 +02:00
Ori Agmon
22a9a16631 Shallow detection cve 2018 1002105 (#66) 
* added the CVE hunter, haven't checked the hunter yet

* fixed illegal name for import file

* Completed & Tested

* subnet scan
 2018-12-06 00:30:31 +02:00
Ori Agmon
cb0164edd1 Shallow detection cve 2018 1002105 (#65) 
* added the CVE hunter, haven't checked the hunter yet

* fixed illegal name for import file

* Completed & Tested
 2018-12-05 23:30:45 +02:00
Liz Rice
8e51c5e501 Merge branch 'master' into more-service-account-token-hunters 2018-12-04 14:12:16 +01:00
Liz Rice
e793a0ff2a Merge pull request #62 from aquasecurity/adding_more_comments 
Adding more comments
 2018-12-04 14:11:14 +01:00
oriagmon
b26121fb6c Fixed bug: 
- Kube Hunter did not find any cluster when 0 vulnerabilities found
 2018-12-04 14:14:23 +02:00
oriagmon
32fee9a0a9 Minor typo 2018-12-03 20:27:47 +02:00
oriagmon
205d25df5d etcd commenting & secrets commenting 2018-12-03 20:24:51 +02:00
oriagmon
3d263382e9 etcd commenting 2018-12-03 20:15:36 +02:00
Ori Agmon
51e00e480c Merge branch 'master' into more-service-account-token-hunters 2018-11-07 23:44:16 +02:00
oriagmon
5dd70aaa6e Reset repo before the commit of split the hunters 2018-11-07 23:38:18 +02:00
oriagmon
e91b2590d5 Fixed more PR comment (ascii encode) 2018-11-07 22:32:20 +02:00
oriagmon
cebba76866 Minor 2018-11-07 22:32:20 +02:00
Liz Rice
3ff8fda30e Typos & text changes 2018-11-07 22:32:20 +02:00
Liz Rice
665956d441 Minor typo 2018-11-07 22:32:20 +02:00
oriagmon
afce211c4e Finished with Most of the pr fixes 2018-11-07 22:32:20 +02:00
oriagmon
c41d66a78c Added & Tested Create A Privileged Pod method 2018-11-07 22:32:20 +02:00
oriagmon
d53cb9ca38 Minor: Forgot to add more accurate event categories 2018-11-07 22:32:20 +02:00
oriagmon
f9aa8254fd Finished & Tested:-) 2018-11-07 22:32:20 +02:00
oriagmon
cd8a95e3f8 Added required class event for delete namespace 2018-11-07 22:32:20 +02:00
oriagmon
5170686d1b Removed testing code, improved comments. 
This hunter was fully tested and it fully worked.
I have added another method to delete a namespace, once I test it it would be ready for a PR!
 2018-11-07 22:32:20 +02:00
oriagmon
08ff6c3bfe Improved evidences 2018-11-07 22:32:20 +02:00
oriagmon
376167b047 Fixed patching methods 2018-11-07 22:32:20 +02:00
oriagmon
32322d68b0 Fixed roles & cluster roles creation & deletion bug. 
just have to fixed the patching api calls now
 2018-11-07 22:32:20 +02:00
oriagmon
81e54b334d Fixed roles & cluster roles creation & deletion bug. 
just have to fixed the patching api calls now :D
 2018-11-07 22:32:20 +02:00
oriagmon
8dae387e6b Commented the pod api calls, so it would be easier to test 2018-11-07 22:32:20 +02:00
oriagmon
75a813ce6f Only the pod patching and the roles & cluster roles api calls are left to test!! 2018-11-07 22:32:20 +02:00
oriagmon
38320d2190 WIP, Got to go :) 
Only have to finish testing the *active hunters'
 2018-11-07 22:32:20 +02:00
oriagmon
3ffe2a93d2 Fixed formated json string 2018-11-07 22:32:20 +02:00
oriagmon
6dcc9cd381 Generated random string as resource names 2018-11-07 22:32:20 +02:00
oriagmon
2a4725cca4 Some triggering fixes & active hunter bugs 2018-11-07 22:32:19 +02:00
oriagmon
2090e6c1c6 Remove irrelevant comments 2018-11-07 22:32:19 +02:00
oriagmon
b5b6491db5 Removed unused variables 2018-11-07 22:32:19 +02:00
oriagmon
5d9c9aec71 Passive hunters are finished! just have to test them on non admin pod too 2018-11-07 22:32:19 +02:00
oriagmon
443b9202fe Parsed response str to dictionary on all methods, working on numbers values too now 2018-11-07 22:32:19 +02:00
oriagmon
903c8e4d11 Parsed response str to dictionary 2018-11-07 22:32:19 +02:00
oriagmon
aa04c71b94 Fixed some minor errors in passive hunter & used more of the active hunter methods 2018-11-07 22:32:19 +02:00
oriagmon
1d62bcd1c7 Finish Implemented hunters & moved some active hunters to passive hunter. 2018-11-07 22:32:19 +02:00
oriagmon
f980f088f2 WIP, time to fix PR on another branch 2018-11-07 22:32:19 +02:00
oriagmon
cd258bd321 WIP, but have to go now: 
(1)Tested manually most of the methods! (2) Published most of events. (3) Added TODOs.
 2018-11-07 22:32:19 +02:00
oriagmon
29c8d8e942 Added corresponding events & descriptions for the new methods 2018-11-07 22:32:19 +02:00
oriagmon
c5bcb56707 Manually tested requests and changed some methods! 2018-11-07 22:32:19 +02:00
oriagmon
ebd9b7fcd5 Improved todo, Added all api calls to API server, we have to test & modify them (when needed) 2018-11-07 22:32:19 +02:00
oriagmon
936e93d5f2 minor Typo 2018-11-07 22:32:19 +02:00
oriagmon
352c33cbb8 Added all the rest of the api calls to the API server and specified algorithm in words 2018-11-07 22:32:19 +02:00
oriagmon
101fee6d9a I didn't Finish that hunter yet ( a todo is detailed on my Trello). 2018-11-07 22:32:19 +02:00
oriagmon
82d4af5ba3 Finish that hunter (detailed on my Trello). 2018-11-07 22:32:19 +02:00
oriagmon
45b804be94 Added a lot of active hunters, using different API Server methods to publish all relevant events from a compromised pod 2018-11-07 22:32:19 +02:00
oriagmon
c336a2a23e Added two hunters attempting to exploit authorized pod RBAC configurations 2018-11-07 22:32:19 +02:00
oriagmon
93d9db658e Listen on port 443 as well now. 2018-11-07 22:32:19 +02:00