kube-hunter

github/kube-hunter

Fork 0

mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-02-14 18:09:56 +00:00

Commit Graph

Select branches

Hide Pull Requests

add-severity

add_plugins_support

add_release_workflow

added_code_analysis_workflow

added_docs_for_exposed_pods

added_security_md

aquadev

bugfix/aws_metadata_scanning

bugfix/cloud_discovery

bugfix/fix_github_actions

bugfix/fix_release_workflow

bugfix/kubernetes_client_error_logs

change_links_to_avd

danielsagi-patch-1

dep/remove-netifaces

dep/remove_netifaces

devops/publish_to_pypi

documentation/mitre

feature/custom_hunting

feature/immersed

feature/mitre_support

feature/multiple_subscription

feature/service-account-token-flag

feature/support_multiple_subscription

fix-certificate-hunting

fix-dns-hunting

fix-hunting-bugs

fix-minor-linting-problem

fix-prettytable

fix/handler_configuration_not_initialized

fix_audit_log_proving

fix_lint_comments

fix_passive_hunting_run_handler

fix_pyinstaller_faliure

fixed-kubelet

improve-dockerfile

improve_aks_hunting

improve_help_message_worker_num_flag

improve_release_workflow

issue-359

lizrice-patch-1

logo

main

owenr-lowercase-severities

refactor/cloud_scanning

refactor_host_discovery

refresh_workflows

remove_cve_scanning

remove_scapy_usage

stop_using_cap_net_raw

update-deps

update-docs-dependencies

update_kramdown_dependency

update_new_aqua_web_design

update_version_on_job_manifest

#1

#10

#100

#101

#104

#105

#106

#11

#114

#115

#116

#117

#119

#12

#121

#123

#125

#128

#129

#13

#130

#131

#132

#133

#134

#135

#136

#137

#139

#14

#140

#141

#142

#145

#146

#147

#15

#150

#153

#154

#156

#157

#158

#159

#160

#161

#162

#163

#165

#166

#167

#168

#169

#170

#173

#175

#176

#178

#18

#181

#182

#183

#187

#188

#189

#19

#192

#193

#195

#196

#197

#198

#199

#2

#20

#200

#201

#202

#203

#204

#205

#206

#208

#209

#21

#210

#211

#212

#214

#215

#217

#218

#219

#22

#220

#221

#222

#223

#224

#225

#226

#227

#228

#229

#23

#231

#232

#233

#236

#237

#238

#239

#24

#242

#243

#244

#247

#248

#249

#25

#250

#251

#252

#255

#256

#257

#258

#259

#260

#261

#263

#264

#265

#266

#267

#269

#27

#270

#271

#272

#273

#275

#276

#278

#279

#281

#283

#286

#288

#29

#294

#297

#298

#299

#3

#30

#302

#303

#309

#310

#311

#313

#314

#315

#317

#318

#32

#323

#325

#327

#328

#33

#330

#332

#335

#337

#338

#34

#342

#344

#347

#350

#351

#354

#355

#357

#360

#361

#362

#363

#364

#365

#367

#368

#369

#371

#372

#376

#377

#378

#382

#383

#384

#385

#386

#387

#388

#389

#39

#390

#391

#392

#396

#397

#398

#399

#4

#400

#401

#402

#403

#406

#407

#409

#411

#412

#414

#415

#416

#419

#42

#420

#421

#422

#423

#423

#424

#425

#427

#429

#430

#431

#436

#439

#441

#447

#448

#450

#451

#453

#454

#455

#458

#458

#461

#463

#464

#466

#468

#470

#471

#474

#478

#481

#482

#484

#485

#487

#488

#489

#49

#49

#491

#492

#495

#497

#5

#50

#500

#501

#504

#506

#508

#509

#51

#51

#510

#510

#511

#511

#518

#518

#519

#52

#520

#528

#528

#53

#530

#530

#539

#539

#54

#540

#540

#542

#542

#543

#543

#544

#546

#55

#550

#551

#555

#555

#57

#58

#6

#60

#62

#63

#65

#66

#67

#68

#69

#7

#72

#73

#74

#76

#77

#8

#81

#82

#85

#86

#87

#88

#89

#9

#90

#92

#93

#94

#95

#96

#97

v0.2.0

v0.3.0

v0.3.0-rc1

v0.3.1

v0.3.2

v0.4.0

v0.4.1

v0.5.0

v0.5.1

v0.5.2

v0.6.0

v0.6.1

v0.6.2

v0.6.3

v0.6.4

v0.6.5

v0.6.6

v0.6.7

v0.6.8

bc47f08e88 fix: resolved severity discrepancy between kube-hunter report and docs for khv043 (#551) main Kiran Bodipi 2024-03-19 18:00:55 +05:30
3e1347290b fix: resolved severity discrepancy between kube-hunter report and docs (#550) Kiran Bodipi 2024-03-11 17:52:47 +05:30
7479aae9ba Fix broken link to Trivy (#546) Andreas Lindhé 2023-11-15 14:30:45 +01:00
e8827b24f6 add maintenance notice (#544) Itay Shakury 2023-11-10 17:05:12 -06:00
ff9f2c536f update logo (#520) Itay Shakury 2022-09-04 09:39:33 +03:00
c849b597b2 update logo logo Itay Shakury 2022-09-04 09:38:04 +03:00
eb31026d8e Removing netifaces due to lack of maintainer (#519) danielsagi 2022-08-25 21:31:02 +03:00
b6fe065dae added windows support using a powershell snippet for interface enum dep/remove-netifaces Daniel Sagi 2022-08-25 21:15:32 +03:00
ad9956e18c fixed bug in subnets appending Daniel Sagi 2022-08-25 20:05:32 +03:00
7f98e384a5 added pyroute2 as a dependency Daniel Sagi 2022-08-25 19:30:14 +03:00
0a1e61fd8b changed to using pyroute2 instead of manually parsing /proc/net/route and instead of psutil for interface enum Daniel Sagi 2022-08-25 19:29:46 +03:00
4887c87694 stopped using mktemp dep/remove_netifaces Daniel Sagi 2022-08-17 15:41:51 +03:00
e43db1dbf2 Checking if /proc/net/route is accessible. before commiting to parse it Daniel Sagi 2022-08-16 16:41:06 +03:00
a6b17e0f69 removed dependency on netifaces entirely by using psutil and manually parsing /proc/net/route to figure out default gateway Daniel Sagi 2022-08-16 16:27:55 +03:00
3df7ea85bc fixed linting issues refactor/cloud_scanning danielsagi 2022-05-28 14:51:43 -07:00
2fac662c51 Refactored 'quick' option to 'full-cloud-scan'. now negating this behaviour. default to always scan /24 CIDR danielsagi 2022-05-28 14:50:26 -07:00
efc6bb69f2 Fixed bug in apiVersions danielsagi 2022-05-28 14:24:47 -07:00
0119a1cb3f added evidence to azure metadata exposure danielsagi 2022-05-28 13:50:30 -07:00
8b1e7c7454 fixed typo on extract_subnets in azure scanning danielsagi 2022-05-28 13:33:17 -07:00
dcfd733cbe fixed IPAddress to < conversion failure danielsagi 2022-05-28 13:27:29 -07:00
a1b218eb7b removed unessesary prints in apiserver tests danielsagi 2022-05-28 13:14:52 -07:00
631721ae02 fixed linting issues danielsagi 2022-05-28 13:11:47 -07:00
f674a99675 added azure subnet extraction as a new hunter AzureSubnetDiscovery. also added specific tests danielsagi 2022-05-28 12:36:47 -07:00
f0a10c4e65 fixed all azure tests danielsagi 2022-05-26 08:52:43 -07:00
015c5ae00f WIP: added tests for AKS metadata api discovery danielsagi 2022-05-26 08:26:28 -07:00
4afbe5d6de WIP: moved registered AKS hunting to multiple subscribe, added Azure version api extraction danielsagi 2022-05-20 01:38:46 -07:00
5b94375903 initial refacotr, moved all aws logic to seperate module Daniel Sagi 2022-05-19 18:04:08 +03:00
a578726495 update manifest to 0.6.8 (#509) v0.6.8 danielsagi 2022-05-13 12:49:12 +03:00
6b7e10dd21 update manifest to 0.6.8 update_version_on_job_manifest danielsagi 2022-05-13 02:46:16 -07:00
c442172715 pin image version (#504) rhtenhove 2022-05-12 17:27:39 -04:00
d7df38fc95 Fix: Removed automatic import of handler object (#506) danielsagi 2022-05-12 22:12:31 +03:00
e6d1bb3fb2 changed import also on test_handler fix/handler_configuration_not_initialized danielsagi 2022-05-12 12:08:56 -07:00
d1867ac430 removed automatic import of handler object in events package and renamed handler.py to event_handler.py to solve name collision danielsagi 2022-05-12 11:24:37 -07:00
9ce385a190 ignore E402 flake8 on test_cloud v0.6.7 danielsagi 2022-05-06 23:53:03 -07:00
ebd8e2e405 Moved config initialize to start of test_cloud.py to solve bug in testing danielsagi 2022-05-06 23:46:46 -07:00
585b490f19 Changed help message of --num-worker-threads flag danielsagi 2022-05-06 23:39:14 -07:00
3b7c00597f ignore E402 flake8 on test_cloud improve_help_message_worker_num_flag danielsagi 2022-05-06 23:53:03 -07:00
52b8887ff6 Moved config initialize to start of test_cloud.py to solve bug in testing danielsagi 2022-05-06 23:46:46 -07:00
111265e3fb Changed help message of --num-worker-threads flag danielsagi 2022-05-06 23:39:14 -07:00
6c4ad4f6fd Solves: Make thread count configurable #433 Florian Bachmann 2022-04-05 21:19:24 +02:00
e6a3c12098 Remove scapy usage (#500) v0.6.6 danielsagi 2022-05-07 09:09:09 +03:00
b08a86b104 Merge branch 'remove_scapy_usage' of https://github.com/aquasecurity/kube-hunter into remove_scapy_usage remove_scapy_usage Daniel Sagi 2022-05-07 09:06:34 +03:00
5bed4ca722 ignore B020 flake8 Daniel Sagi 2022-05-07 09:05:42 +03:00
915d2bff8a added explicit new version to plugins in dockerfile installation danielsagi 2022-05-06 22:47:01 -07:00
8146810d44 added installation of default plugins to Dockerfile Daniel Sagi 2022-05-07 06:49:25 +03:00
c54859ec37 removed arp and dns hunters usage due to it's violations of the scapy GPL2 license Daniel Sagi 2022-04-01 19:12:01 +03:00
2a7020682e Update image tag of aqua version danielsagi 2022-03-28 17:33:22 +03:00
e1896f3983 docs: lowercase the severities for AVD (#495) Owen Rumney 2022-03-25 09:03:43 +00:00
bc57daaf4a docs: lowercase the severities for AVD owenr-lowercase-severities Owen Rumney 2022-03-25 09:02:58 +00:00
fc7fbbf1fc Added severity to the kube-hunter found issues (#492) jerbia 2022-03-22 11:03:05 +02:00
d36cd1e631 Added severity to the kube-hunter found issues add-severity “Amir 2022-03-18 17:54:17 +02:00
7c62cc21af Feature: Custom Hunting (#489) v0.6.5 danielsagi 2022-01-28 18:54:36 +02:00
947e710320 fixed bug in import loop feature/custom_hunting Daniel Sagi 2022-01-28 18:34:46 +02:00
1db0985c53 changed old name class-names to raw-hunter-names Daniel Sagi 2022-01-28 18:30:59 +02:00
d05c174d9d added Collector, StartedInfo and SendFullReport to the core_hunters Daniel Sagi 2022-01-28 18:19:29 +02:00
51b893c7db added documentation in readme for Custom hunting and made Advanced Usage a higher level topic Daniel Sagi 2022-01-28 18:00:00 +02:00
d6e849544d flake8 formatting Daniel Sagi 2022-01-27 21:39:08 +02:00
a5e805564d ran black to format Daniel Sagi 2022-01-27 21:36:41 +02:00
c33c1c2440 changed name from partial to custom Daniel Sagi 2022-01-27 20:52:43 +02:00
b518429fc4 added partial and partial-names flag. mechanism for whitelisting hunter subscrption for custom hunts Daniel Sagi 2022-01-27 20:48:46 +02:00
c17aa17096 ignore https certificate verification (#484) v0.6.4 Juvenile 2022-01-22 22:06:39 +08:00
4204879251 Update README.md (#487) testn 2022-01-22 21:05:20 +07:00
a746bd0eb1 Added correct exception handling for discovery of Metadata apis (#488) danielsagi 2022-01-22 15:56:04 +02:00
d513aa7b1e fixed linting issues bugfix/aws_metadata_scanning Daniel Sagi 2022-01-22 15:51:18 +02:00
c622ec8115 Added correct exception handling for discovery of Metadata apis Daniel Sagi 2022-01-22 15:43:58 +02:00
b379e64314 Added MITRE documentation in README (#485) danielsagi 2022-01-14 00:00:29 +02:00
d90c99c766 fixed link in readme documentation/mitre Daniel Sagi 2022-01-13 23:59:40 +02:00
c45f6122c3 moved docs to start of README, also created MITRE image, showing covered areas of kube-hunter Daniel Sagi 2022-01-13 23:53:51 +02:00
00eb0dfa87 Switched CVE Hunting to optional & Minor core feature (#482) v0.6.3 danielsagi 2021-10-16 17:49:00 +03:00
f4c1e38c6f fixed merge problem in workflow file remove_cve_scanning Daniel Sagi 2021-10-16 17:41:28 +03:00
eebbc0e735 Merge branch 'main' into remove_cve_scanning Daniel Sagi 2021-10-16 17:32:48 +03:00
8d045fb1a8 Fix all of github action workflows (#481) v0.6.2 danielsagi 2021-10-16 17:23:41 +03:00
d50f78cadc fixed pytest bugfix/fix_release_workflow Daniel Sagi 2021-10-16 17:17:31 +03:00
f294c633cb removed -e . from req dev txt file Daniel Sagi 2021-10-15 21:32:00 +03:00
1dcad5f89e added make install in test workflow Daniel Sagi 2021-10-15 21:30:34 +03:00
153f5abbce added -e . to end of requirements dev file Daniel Sagi 2021-10-15 21:26:40 +03:00
7fae4ced86 removed reference from requirements dev file Daniel Sagi 2021-10-15 21:23:54 +03:00
48b2ee30f3 changed to dev-deps in make Daniel Sagi 2021-10-15 21:22:18 +03:00
798cd62da9 fixed all of workflows Daniel Sagi 2021-10-15 21:20:51 +03:00
9bff41a938 Made cve hunting optional, defaultly set to not run Daniel Sagi 2021-10-15 20:49:36 +03:00
da560975b2 Removed registration of the k8s cve hunter. disabled cve hunting Daniel Sagi 2021-10-15 18:21:53 +03:00
c16c997e47 removed cache and changed to only use ubuntu-latest bugfix/fix_github_actions Daniel Sagi 2021-09-30 16:32:04 +03:00
a22debaa4e removed unsupported ubuntu16 machines Daniel Sagi 2021-09-30 16:07:22 +03:00
5597020dc1 Added documentation about differences between vulnerabilities and the attack matrix techniques Daniel Sagi 2021-09-30 16:04:55 +03:00
83b19d4208 Feature: Changed vulnerability categories to support MITRE ATT&CK (#474) danielsagi 2021-09-30 15:25:30 +03:00
0ada02e634 Merge branch 'main' into feature/mitre_support feature/mitre_support Daniel Sagi 2021-09-30 15:13:42 +03:00
af5c9cea6c formatted with black Daniel Sagi 2021-08-19 19:53:22 +03:00
2814ba39c0 added cve categories to plain reporter as well Daniel Sagi 2021-08-19 19:51:14 +03:00
706998c576 Changed format of vulnerabilities table to display the mitre technique related to the vulnerability Daniel Sagi 2021-08-12 22:31:09 +03:00
473e4fe2b5 Make gateway discovery always run when running as pod #471 v0.6.1 danielsagi 2021-07-23 21:09:28 +03:00
98a2ca418d WIP: starting to work on table output Daniel Sagi 2021-07-23 20:42:31 +03:00
9115302f2c Refactored all categories to the new MITRE attack matrix format Daniel Sagi 2021-07-22 19:20:13 +03:00
6808adfe94 changed behaviour of from pod hosts discovery to always do gateway discovery, also made aws discovery more verbose bugfix/cloud_discovery Daniel Sagi 2021-07-22 19:38:25 +03:00
6af129a286 Added a new hirerarchy for types, in a new sub package of types. continued changing MITRE categories Daniel Sagi 2021-07-22 17:45:06 +03:00
6f03e01fc0 Changed Information Disclosure to Discovery, Also starting to add Defense Evasion Daniel Sagi 2021-07-22 16:44:48 +03:00
f67f08225c changed exception logs to debug logs in kubernetes_client nodes discovery (#470) v0.6.0 danielsagi 2021-07-22 15:57:25 +03:00
078db779ae changed exception logs to debug logs in kubernetes_client nodes discovery bugfix/kubernetes_client_error_logs Daniel Sagi 2021-07-22 15:53:27 +03:00
c96312b91e updated gemfile (#464) danielsagi 2021-06-24 21:15:18 +03:00
0681cd6688 updated gemfile update-docs-dependencies Daniel Sagi 2021-06-24 21:13:38 +03:00
a7d26452fb Feature: New Service Account Token Flag (#463) danielsagi 2021-06-24 20:58:43 +03:00

1 2 3 4 5 ...