cclauss
effcbc15c9
print() is a function in Python 3
...
Just like #15 and #19 but in a new file this time. Perhaps it is time to add some automated testing like Travis CI, Circle CI, Appveyor, etc. https://github.com/marketplace/category/continuous-integration
2018-08-21 09:53:24 +02:00
Cosmin Cojocar
74943f10d1
Refactor the reporter and add an YAML report format
...
Separate the events collection from report rendering, in order
to allow different type of reports.
2018-08-20 10:03:26 +02:00
Liz Rice
e9de79b330
Merge pull request #19 from cclauss/patch-1
...
print() is a function in Python 3
2018-08-20 08:39:39 +01:00
Lee Briggs
4e72112339
Add kubeadm API port to API Server discovery
2018-08-17 08:17:23 -07:00
Liz Rice
94822d1178
Look on port 6443 as well
2018-08-17 15:42:28 +01:00
cclauss
305e724894
print() is a function in Python 3
2018-08-17 15:29:18 +02:00
daniel_sagi
a4dbaaf446
added an API Server event, also added port 443 to ports discovery
2018-08-15 16:46:21 +03:00
daniel_sagi
615f3d3ace
Merge branch 'master' of https://github.com/aquasecurity/kube-hunter
2018-08-14 20:10:19 +03:00
daniel_sagi
7017146b5a
added TablesPrinted event publishing in default report module
2018-08-14 20:10:03 +03:00
danielsagi
25b226e849
Merge pull request #8 from aquasecurity/list-tests-option
...
Added List tests
2018-08-08 17:21:15 +03:00
daniel_sagi
31f077059c
added description for dashboard hunting
2018-08-08 17:07:28 +03:00
daniel_sagi
71c14fbdf8
added list option, as well as added description for all hunters
2018-08-08 15:57:43 +03:00
danielsagi
fcf983ece5
Updated services description
...
On kubelet services to be more neutral
2018-08-06 14:17:10 +03:00
daniel_sagi
eff8b9a598
minor change to table display, more information.
2018-07-24 19:03:48 +03:00
daniel_sagi
83d571b078
added status codes Unathorized and Forbidden handling of kubelet reponses
2018-07-24 18:51:38 +03:00
daniel_sagi
4e56e44156
added plugins package. for adding command lines arguments. moved report to the modules folder.
2018-07-24 16:30:28 +03:00
daniel_sagi
4e988dca38
moved all start status logging to the default module
2018-07-23 17:39:24 +03:00
daniel_sagi
174d93804c
added minimal dashboard hunting
2018-07-19 14:42:50 +03:00
daniel_sagi
be8895423e
minor changes in certificate hunting to match design pattern
2018-07-18 11:55:57 +03:00
daniel_sagi
0668079b30
Merge branch 'master' of bitbucket.org:scalock/kube-hunter
2018-07-18 11:37:53 +03:00
daniel_sagi
3d1c659233
fixed bug in discovery of secured kubelet api
2018-07-18 11:28:37 +03:00
daniel_sagi
da21dfa167
added passive evidences on some vulnerabilities
2018-07-18 11:28:05 +03:00
Shir
7c772e0f3b
Nice ascii view instead of the not-that-pretty table
2018-07-17 20:54:57 +03:00
daniel_sagi
185f89d07f
fixed pods vuln
2018-07-17 19:06:03 +03:00
daniel_sagi
67d05bccf5
removed commands on passive
2018-07-17 17:05:50 +03:00
daniel_sagi
4d599cda50
added classification for certificate hunting
2018-07-15 14:17:44 +03:00
daniel_sagi
5cb8889d16
Merge remote-tracking branch 'origin/liz'
2018-07-15 13:23:08 +03:00
daniel_sagi
0619eb06e2
changed existing vulnerabilities to specify categories, and changed a bit of their description
2018-07-15 13:17:42 +03:00
daniel_sagi
d0a7163221
advanced discovery of proxy
2018-07-15 13:15:59 +03:00
Liz Rice
b0b8ba9a5e
Description tweaks
2018-07-13 13:22:55 -04:00
Liz Rice
5e3ffcc7af
Hunt for email addresses in certificates
2018-07-13 13:22:01 -04:00
Liz Rice
6c103847a2
Error handling so that we can run locally without needing a network connection
...
Allows user to test with a kubernetes cluster on a local VM on their laptop, for example when on a plane :-)
2018-07-13 10:44:05 -04:00
Liz Rice
e3b21d1d64
Don't stack trace if we can't access the internet
2018-07-13 10:10:29 -04:00
daniel_sagi
e16bc40fb7
minor services description improvements
2018-07-04 15:08:51 +03:00
daniel_sagi
23c03afc02
added interactive choosing of scanning options
2018-07-02 16:20:14 +03:00
daniel_sagi
464e7aad1f
Added exception handling and improved help
2018-06-21 13:45:19 +03:00
daniel_sagi
8c6712f378
1. Changed report methods and renamed "log" module to "", added another report generation in a new json format
...
2. started to add the --token option to send the finished report.
3. changed a bit of kubelet vulnerability output architecture to match out conventions.
4. added healthz check on kubelets
2018-06-20 12:09:40 +03:00
daniel_sagi
2b690056b0
Fixed type in privileged, also moved Components to core.types
2018-06-19 11:07:18 +03:00
daniel_sagi
fac667552e
added cidr option, also added a while true when running on a pod, to halt for seeing results before restart
2018-06-17 19:01:23 +03:00
daniel_sagi
f3b9b5200f
added requirements.txt
2018-06-12 16:55:22 +03:00
daniel_sagi
73a4e83781
Added checks on api responses before json.loads, added a quick scanning option, to scan part of the subnet
2018-06-12 14:30:28 +03:00
daniel_sagi
c52e684272
removed passing of active attribute to results printing
2018-06-12 13:16:35 +03:00
daniel_sagi
e4c9beb653
added prove of running pods
2018-06-12 12:57:29 +03:00
daniel_sagi
3f174364f7
Added cloud identifiering for each type of host scan, using azurespeed. Now AzuerSpn hunting will be triggered only if the host is an azure cluster. using predicate, and the new 'cloud' attribute
2018-06-12 12:10:59 +03:00
daniel_sagi
973c2a25a0
changed output results table format, added AzureMetadata vulnerability on discovery
2018-06-11 20:02:25 +03:00
daniel_sagi
7e939b4544
finished aks spn hunting
2018-06-11 18:44:54 +03:00
daniel_sagi
548ae7e486
changed evidence of priviledged containers, also added casting to str in reporter
2018-06-11 18:28:01 +03:00
daniel_sagi
9bb835edd3
added azure spn subscription hunting
2018-06-11 18:26:58 +03:00
daniel_sagi
838be65967
Added proves for vulnerabilities, added 'evidence' field for every vulnerability to be filled be provers(mostly ActiveHunters)
2018-06-11 18:01:54 +03:00
daniel_sagi
75393da91a
simplified kubelet open handlers hunting and types
2018-06-11 14:26:09 +03:00
