github/kube-hunter
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-11 03:37:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
317 Commits 55 Branches 19 Tags
5dd70aaa6e845295ebbbdcbc087cbda4b8de1f62
Commit Graph

317 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
oriagmon
5dd70aaa6e Reset repo before the commit of split the hunters 2018-11-07 23:38:18 +02:00
oriagmon
e91b2590d5 Fixed more PR comment (ascii encode) 2018-11-07 22:32:20 +02:00
oriagmon
cebba76866 Minor 2018-11-07 22:32:20 +02:00
Liz Rice
3ff8fda30e Typos & text changes 2018-11-07 22:32:20 +02:00
Liz Rice
665956d441 Minor typo 2018-11-07 22:32:20 +02:00
oriagmon
afce211c4e Finished with Most of the pr fixes 2018-11-07 22:32:20 +02:00
oriagmon
c41d66a78c Added & Tested Create A Privileged Pod method 2018-11-07 22:32:20 +02:00
oriagmon
d53cb9ca38 Minor: Forgot to add more accurate event categories 2018-11-07 22:32:20 +02:00
oriagmon
f9aa8254fd Finished & Tested:-) 2018-11-07 22:32:20 +02:00
oriagmon
cd8a95e3f8 Added required class event for delete namespace 2018-11-07 22:32:20 +02:00
oriagmon
5170686d1b Removed testing code, improved comments. 
This hunter was fully tested and it fully worked.
I have added another method to delete a namespace, once I test it it would be ready for a PR!
 2018-11-07 22:32:20 +02:00
oriagmon
08ff6c3bfe Improved evidences 2018-11-07 22:32:20 +02:00
oriagmon
376167b047 Fixed patching methods 2018-11-07 22:32:20 +02:00
oriagmon
32322d68b0 Fixed roles & cluster roles creation & deletion bug. 
just have to fixed the patching api calls now
 2018-11-07 22:32:20 +02:00
oriagmon
81e54b334d Fixed roles & cluster roles creation & deletion bug. 
just have to fixed the patching api calls now :D
 2018-11-07 22:32:20 +02:00
oriagmon
8dae387e6b Commented the pod api calls, so it would be easier to test 2018-11-07 22:32:20 +02:00
oriagmon
75a813ce6f Only the pod patching and the roles & cluster roles api calls are left to test!! 2018-11-07 22:32:20 +02:00
oriagmon
38320d2190 WIP, Got to go :) 
Only have to finish testing the *active hunters'
 2018-11-07 22:32:20 +02:00
oriagmon
3ffe2a93d2 Fixed formated json string 2018-11-07 22:32:20 +02:00
oriagmon
6dcc9cd381 Generated random string as resource names 2018-11-07 22:32:20 +02:00
oriagmon
2a4725cca4 Some triggering fixes & active hunter bugs 2018-11-07 22:32:19 +02:00
oriagmon
2090e6c1c6 Remove irrelevant comments 2018-11-07 22:32:19 +02:00
oriagmon
b5b6491db5 Removed unused variables 2018-11-07 22:32:19 +02:00
oriagmon
5d9c9aec71 Passive hunters are finished! just have to test them on non admin pod too 2018-11-07 22:32:19 +02:00
oriagmon
443b9202fe Parsed response str to dictionary on all methods, working on numbers values too now 2018-11-07 22:32:19 +02:00
oriagmon
903c8e4d11 Parsed response str to dictionary 2018-11-07 22:32:19 +02:00
oriagmon
aa04c71b94 Fixed some minor errors in passive hunter & used more of the active hunter methods 2018-11-07 22:32:19 +02:00
oriagmon
1d62bcd1c7 Finish Implemented hunters & moved some active hunters to passive hunter. 2018-11-07 22:32:19 +02:00
oriagmon
f980f088f2 WIP, time to fix PR on another branch 2018-11-07 22:32:19 +02:00
oriagmon
cd258bd321 WIP, but have to go now: 
(1)Tested manually most of the methods! (2) Published most of events. (3) Added TODOs.
 2018-11-07 22:32:19 +02:00
oriagmon
29c8d8e942 Added corresponding events & descriptions for the new methods 2018-11-07 22:32:19 +02:00
oriagmon
c5bcb56707 Manually tested requests and changed some methods! 2018-11-07 22:32:19 +02:00
oriagmon
ebd9b7fcd5 Improved todo, Added all api calls to API server, we have to test & modify them (when needed) 2018-11-07 22:32:19 +02:00
oriagmon
936e93d5f2 minor Typo 2018-11-07 22:32:19 +02:00
oriagmon
352c33cbb8 Added all the rest of the api calls to the API server and specified algorithm in words 2018-11-07 22:32:19 +02:00
oriagmon
101fee6d9a I didn't Finish that hunter yet ( a todo is detailed on my Trello). 2018-11-07 22:32:19 +02:00
oriagmon
82d4af5ba3 Finish that hunter (detailed on my Trello). 2018-11-07 22:32:19 +02:00
oriagmon
45b804be94 Added a lot of active hunters, using different API Server methods to publish all relevant events from a compromised pod 2018-11-07 22:32:19 +02:00
oriagmon
c336a2a23e Added two hunters attempting to exploit authorized pod RBAC configurations 2018-11-07 22:32:19 +02:00
oriagmon
93d9db658e Listen on port 443 as well now. 2018-11-07 22:32:19 +02:00
ori.agmon
7a006ef51e Fixed PR comment: Added proper exception handling. 
Added logging for this hunter.
 2018-11-07 22:32:19 +02:00
ori.agmon
ad5a4eba86 Improved vulnerability description for this hunter 2018-11-07 22:32:19 +02:00
ori.agmon
d4d1751d3e Minor changes-> removed unused imports & small fixes 2018-11-07 22:32:19 +02:00
ori.agmon
b74225e027 Added apiserver hunter, would attempt to get the service account token and access the server api with it 2018-11-07 22:32:19 +02:00
oriagmon
458381fb2d Fixed more PR comment (ascii encode) 2018-11-07 22:32:19 +02:00
oriagmon
2a3764e097 Minor 2018-11-07 22:32:19 +02:00
oriagmon
14db8edd39 Finished with Most of the pr fixes 2018-11-07 22:32:19 +02:00
Liz Rice
7502b10005 Typos & text changes 2018-11-07 22:32:19 +02:00
Liz Rice
1762b2fbd4 Minor typo 2018-11-07 22:32:19 +02:00
oriagmon
2264754908 Added & Tested Create A Privileged Pod method 2018-11-07 22:32:19 +02:00