fix: resolved severity discrepancy between kube-hunter report and docs for khv043 (#551 )

fix: resolved severity discrepancy between kube-hunter report and docs (#550 )
Fix broken link to Trivy (#546 )
2026-02-15 10:30:08 +00:00 · 2024-03-19 14:30:55 +02:00 · 2024-03-11 14:22:47 +02:00 · 2023-11-15 15:30:45 +02:00 · 2023-11-11 01:05:12 +02:00 · 2022-09-04 09:39:33 +03:00
6 changed files with 9 additions and 24 deletions
--- a/README.md
+++ b/README.md
@@ -1,18 +1,7 @@
-![kube-hunter](https://github.com/aquasecurity/kube-hunter/blob/main/kube-hunter.png)
+## Notice
+kube-hunter is not under active development anymore. If you're interested in scanning Kubernetes clusters for known vulnerabilities, we recommend using [Trivy](https://github.com/aquasecurity/trivy). Specifically, Trivy's Kubernetes [misconfiguration scanning](https://blog.aquasec.com/trivy-kubernetes-cis-benchmark-scanning) and [KBOM vulnerability scanning](https://blog.aquasec.com/scanning-kbom-for-vulnerabilities-with-trivy). Learn more in the [Trivy Docs](https://aquasecurity.github.io/trivy/).

-[![GitHub Release][release-img]][release]
-![Downloads][download]
-![Docker Pulls][docker-pull]
-[![Build Status](https://github.com/aquasecurity/kube-hunter/workflows/Test/badge.svg)](https://github.com/aquasecurity/kube-hunter/actions)
-[![codecov](https://codecov.io/gh/aquasecurity/kube-hunter/branch/main/graph/badge.svg)](https://codecov.io/gh/aquasecurity/kube-hunter)
-[![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black)
-[![License](https://img.shields.io/github/license/aquasecurity/kube-hunter)](https://github.com/aquasecurity/kube-hunter/blob/main/LICENSE)
-[![Docker image](https://images.microbadger.com/badges/image/aquasec/kube-hunter.svg)](https://microbadger.com/images/aquasec/kube-hunter "Get your own image badge on microbadger.com")
-
-[download]: https://img.shields.io/github/downloads/aquasecurity/kube-hunter/total?logo=github
-[release-img]: https://img.shields.io/github/release/aquasecurity/kube-hunter.svg?logo=github
-[release]: https://github.com/aquasecurity/kube-hunter/releases
-[docker-pull]: https://img.shields.io/docker/pulls/aquasec/kube-hunter?logo=docker&label=docker%20pulls%20%2F%20kube-hunter
+---

 kube-hunter hunts for security weaknesses in Kubernetes clusters. The tool was developed to increase awareness and visibility for security issues in Kubernetes environments. **You should NOT run kube-hunter on a Kubernetes cluster that you don't own!**

@@ -21,12 +10,9 @@ kube-hunter hunts for security weaknesses in Kubernetes clusters. The tool was d
 **Explore vulnerabilities**: The kube-hunter knowledge base includes articles about discoverable vulnerabilities and issues. When kube-hunter reports an issue, it will show its VID (Vulnerability ID) so you can look it up in the KB at https://aquasecurity.github.io/kube-hunter/  
 _If you're interested in kube-hunter's integration with the Kubernetes ATT&CK Matrix [Continue Reading](#kuberentes-attck-matrix)_

-**Contribute**: We welcome contributions, especially new hunter modules that perform additional tests. If you would like to develop your modules please read [Guidelines For Developing Your First kube-hunter Module](https://github.com/aquasecurity/kube-hunter/blob/main/CONTRIBUTING.md).
+[kube-hunter demo video](https://youtu.be/s2-6rTkH8a8?t=57s)

-[![kube-hunter demo video](https://github.com/aquasecurity/kube-hunter/blob/main/kube-hunter-screenshot.png)](https://youtu.be/s2-6rTkH8a8?t=57s)
-
-Table of Contents
-=================
+## Table of Contents

 - [Table of Contents](#table-of-contents)
  - [Kubernetes ATT&CK Matrix](#kubernetes-attck-matrix)
@@ -52,7 +38,6 @@ Table of Contents
  - [Contribution](#contribution)
  - [License](#license)

---
 ## Kubernetes ATT&CK Matrix

 kube-hunter now supports the new format of the Kubernetes ATT&CK matrix.
--- a/docs/_kb/KHV002.md
+++ b/docs/_kb/KHV002.md
@@ -2,7 +2,7 @@
 vid: KHV002
 title: Kubernetes version disclosure
 categories: [Information Disclosure]
-severity: low
+severity: high
 ---

 # {{ page.vid }} - {{ page.title }}
--- a/docs/_kb/KHV036.md
+++ b/docs/_kb/KHV036.md
@@ -2,7 +2,7 @@
 vid: KHV036
 title: Anonymous Authentication
 categories: [Remote Code Execution]
-severity: critical
+severity: high
 ---

 # {{ page.vid }} - {{ page.title }}
--- a/docs/_kb/KHV043.md
+++ b/docs/_kb/KHV043.md
@@ -2,7 +2,7 @@
 vid: KHV043
 title: Cluster Health Disclosure
 categories: [Information Disclosure]
-severity: high
+severity: low
 ---

 # {{ page.vid }} - {{ page.title }}
--- a/docs/_kb/KHV052.md
+++ b/docs/_kb/KHV052.md
@@ -2,7 +2,7 @@
 vid: KHV052
 title: Exposed Pods
 categories: [Information Disclosure]
-severity: high
+severity: medium
 ---

 # {{ page.vid }} - {{ page.title }}
--- a/kube-hunter.png
+++ b/kube-hunter.png
Author	SHA1	Message	Date
Kiran Bodipi	bc47f08e88	fix: resolved severity discrepancy between kube-hunter report and docs for khv043 (#551 )	2024-03-19 14:30:55 +02:00
Kiran Bodipi	3e1347290b	fix: resolved severity discrepancy between kube-hunter report and docs (#550 )	2024-03-11 14:22:47 +02:00
Andreas Lindhé	7479aae9ba	Fix broken link to Trivy (#546 ) Fixes #545	2023-11-15 15:30:45 +02:00
Itay Shakury	e8827b24f6	add maintenance notice (#544 )	2023-11-11 01:05:12 +02:00
Itay Shakury	ff9f2c536f	update logo (#520 )	2022-09-04 09:39:33 +03:00