updated screenshot of aqua's site

Fixed false positive on test_run_handler (#411 )
* fixed wrong check on test run handler * changed method of testing to be using 404 with real post method
2026-03-02 01:30:31 +00:00 · 2020-11-19 18:39:15 +02:00 · 2020-11-19 17:41:33 +02:00
2 changed files with 3 additions and 2 deletions
--- a/kube-hunter-screenshot.png
+++ b/kube-hunter-screenshot.png
--- a/kube_hunter/modules/hunting/kubelet.py
+++ b/kube_hunter/modules/hunting/kubelet.py
@@ -375,8 +375,9 @@ class SecureKubeletPortHunter(Hunter):
                container_name="test",
                cmd="",
            )
-            # if we get a Method Not Allowed, we know we passed Authentication and Authorization.
-            return self.session.get(run_url, verify=False, timeout=config.network_timeout).status_code == 405
+            # if we get this message, we know we passed Authentication and Authorization, and that the endpoint is enabled.
+            status_code = self.session.post(run_url, verify=False, timeout=config.network_timeout).status_code
+            return status_code == requests.codes.NOT_FOUND

        # returns list of currently running pods
        def test_running_pods(self):
Author	SHA1	Message	Date
Daniel Sagi	00221336ff	updated screenshot of aqua's site	2020-11-19 18:39:15 +02:00
danielsagi	14ca1b8bce	Fixed false positive on test_run_handler (#411 ) * fixed wrong check on test run handler * changed method of testing to be using 404 with real post method	2020-11-19 17:41:33 +02:00