github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-10 11:17:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
196 Commits 55 Branches 19 Tags
46cbfbc5dc07a8ae7f69c14f25d1fcff252c8a70
Commit Graph

196 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
ori.agmon
46cbfbc5dc Fixed status code bug & some intending. 2018-10-10 20:10:06 +03:00
ori.agmon
e3d45d5d88 improved comment 2018-10-10 19:12:16 +03:00
ori.agmon
7041280f2c Removed the helpers functions 2018-10-10 19:11:04 +03:00
ori.agmon
5f5f411aff Added informative description for the EtcdAccessEnabledWithoutAuthEvent event 2018-10-09 21:27:11 +03:00
ori.agmon
28b7910588 Fixed the PR comments :-) 2018-10-08 17:21:29 +03:00
ori.agmon
19c10fd8e9 Fixed the PR comments :-) 2018-10-08 17:18:19 +03:00
ori.agmon
4573fe4089 Improved unauthorized access false positive on edge case (where user is running using https & 127.0.0.1 & needed certificates) 2018-10-07 17:16:07 +03:00
ori.agmon
b9ce66e372 Added evidence to the no auth event & tested it on a vulnerable remote cluster (and it worked!) 2018-10-07 16:59:49 +03:00
ori.agmon
7e24471e08 Updated the todos list 2018-10-07 11:45:52 +03:00
ori.agmon
3984b5ad32 Added categories to all vulnerabilities 2018-10-07 11:42:21 +03:00
ori.agmon
440ee5cf2b Fixed a small bug in the active hunter 2018-10-03 18:50:53 +03:00
ori.agmon
29f4d94ca3 Fixed a small bug in the active hunter 2018-10-03 18:48:54 +03:00
ori.agmon
da9a97dfd8 Fixed a small bug in the active hunter & passive hunter 2018-10-03 18:46:48 +03:00
ori.agmon
1e13ab0985 Updated the TODOS list (Only 2 left!) 2018-10-03 18:34:43 +03:00
ori.agmon
0d980fa0ef Added some evidences to events & deleted unused code 2018-10-03 18:32:31 +03:00
ori.agmon
4f9d1e2c45 I've Split the etcd hunters to hunting & discovery dirs 2018-10-03 18:20:35 +03:00
ori.agmon
d0633ee3c1 Added init method to the etcd active hunter 2018-10-02 19:32:32 +03:00
ori.agmon
7201f5e236 Solved some exception bugs & did some refactoring to code & Added event & splited active & passive hunter 2018-10-02 18:55:50 +03:00
ori.agmon
f4ff44012e Solved some exception bugs & did some refactoring to code & Added event 2018-10-02 18:02:12 +03:00
ori.agmon
64722ea1b4 Solved some exception bugs & did some refactoring to code 2018-10-02 17:57:50 +03:00
ori.agmon
e2c04b2a7c Added timeout for each request. 
Finished with some of the TODOS tasks (added logs).
Added another TODO task for this branch.
 2018-10-02 11:59:25 +03:00
ori.agmon
a506ed5b9c Edited some of the etcd checking & added 2379 port checking 2018-09-30 14:03:42 +03:00
ori.agmon
628c214215 Added some remote access to etcd checks. 2018-09-26 18:42:06 +03:00
Liz Rice
79a5ca8bde Add link to demo video 2018-09-13 16:14:21 +01:00
Liz Rice
5a687b47b1 Add screenshot 2018-09-13 16:13:08 +01:00
Liz Rice
8da2b588a8 Add logo to readme 2018-09-07 14:08:42 +01:00
Liz Rice
9c44e2c7e7 Add logo image 2018-09-07 14:06:34 +01:00
Liz Rice
fc249df89e Merge pull request #39 from ramshazar/patch-1 
Update base image
 2018-09-04 18:03:27 +01:00
Liz Rice
6479e03271 Capitalization 2018-09-04 18:03:09 +01:00
Liz Rice
8af84cb008 Capitalization 
Thanks @craigbox :-)
 2018-09-04 18:01:42 +01:00
Grambulf
3556b112a3 Update base image 
There is a newer version of the base image
 2018-09-01 16:07:29 +02:00
Liz Rice
a5476d5b85 Merge pull request #34 from manonthemat/master 
readme fix
 2018-08-25 06:37:40 +01:00
Matthias Sieber
7c4bcd1335 readme fix 2018-08-24 16:21:32 -07:00
Liz Rice
7dff5c12ad Merge pull request #33 from aquasecurity/false-pos 
401 status says pod was protected
 2018-08-23 09:51:59 +01:00
Liz Rice
15512ba8b8 401 status says pod was protected 2018-08-23 09:42:31 +01:00
Liz Rice
af83103d45 Merge pull request #32 from kinvolk/schu/fix-shebang-env-path 
kube-hunter: fix `env` path in shebang
 2018-08-22 10:35:16 +01:00
Michael Schubert
d90c75a8f0 kube-hunter: fix env path in shebang 
Currently, `./kube-hunter.py` results in:

```
-bash: ./kube-hunter.py: /bin/env: bad interpreter: No such file or directory
```
 2018-08-22 10:50:19 +02:00
Liz Rice
c0d6ff1fc1 Include link to EULA for containerised version 
Fixes #31
 2018-08-21 14:30:08 +01:00
Liz Rice
52c29ab220 Merge pull request #30 from cclauss/patch-1 
Travis CI: Test on Python 2.7 and 3.6
 2018-08-21 14:24:03 +01:00
cclauss
a7269c5a9b Travis CI: Test on Python 2.7 and 3.6 
The Python 3.7 on Travis CI stuff is still a bit too experimental for consistent builds.
 2018-08-21 14:39:23 +02:00
Liz Rice
5c2e9afb14 Tweak to get python 3.7 build running. I hope. 2018-08-21 13:20:41 +01:00
Liz Rice
973815bc92 Merge pull request #27 from cclauss/patch-1 
Add automated testing on Travis CI
 2018-08-21 13:14:03 +01:00
Liz Rice
d050f18cd4 Merge pull request #29 from aquasecurity/menu-order 
Shouldn’t rely on the order of a dictionary
 2018-08-21 09:58:30 +01:00
Liz Rice
afd3563fc4 Shouldn’t rely on the order of a dictionary 2018-08-21 09:57:09 +01:00
cclauss
6fd15f6555 Add automated testing on Travis CI 
Fixes #26 Travis CI needs to be turned ON for this repo at https://travis-ci.org/aquasecurity

Travis CI will run [flake8](http://flake8.pycqa.org) tests on Python 2.7 and 3.7 to find Python syntax errors and undefined names.

__E901,E999,F821,F822,F823__ are the "_showstopper_" flake8 issues that can halt the runtime with a SyntaxError, NameError, etc. Most other flake8 issues are merely "style violations" -- useful for readability but they do not effect runtime safety.
* F821: undefined name `name`
* F822: undefined name `name` in `__all__`
* F823: local variable name referenced before assignment
* E901: SyntaxError or IndentationError
* E999: SyntaxError -- failed to compile a file into an Abstract Syntax Tree
 2018-08-21 10:17:23 +02:00
Liz Rice
1f43ee0ee5 Merge pull request #25 from cclauss/patch-1 
print() is a function in Python 3
 2018-08-21 09:04:28 +01:00
cclauss
effcbc15c9 print() is a function in Python 3 
Just like #15 and #19 but in a new file this time.  Perhaps it is time to add some automated testing like Travis CI, Circle CI, Appveyor, etc.  https://github.com/marketplace/category/continuous-integration
 2018-08-21 09:53:24 +02:00
Liz Rice
d126211d6b Merge pull request #20 from ccojocar/yaml_report 
Refactor the reporter and add YAML report format
 2018-08-20 10:05:37 +01:00
Cosmin Cojocar
de1508dfc7 Add tcpdump and wireshark into the Docker image to make scapy happy 2018-08-20 10:03:26 +02:00
Cosmin Cojocar
74943f10d1 Refactor the reporter and add an YAML report format 
Separate the events collection from report rendering, in order
to allow different type of reports.
 2018-08-20 10:03:26 +02:00