mirror of https://github.com/aquasecurity/kube-hunter.git synced 2026-05-09 18:57:02 +00:00

Go to file

daniel_sagi c8c8cd9ebd Fixed failed tries to scan unimplemented services

Added an empty url to dashboard hunter
Added chrome binary to automatically be install

2018-04-23 20:06:20 +03:00

hunters

Fixed failed tries to scan unimplemented services

2018-04-23 20:06:20 +03:00

.gitignore

initial commit

2018-03-26 17:25:30 +03:00

discovery.py

initial commit

2018-03-26 17:25:30 +03:00

kube-hunter.py

Fixed failed tries to scan unimplemented services

2018-04-23 20:06:20 +03:00

README.md

initial commit

2018-03-26 17:25:30 +03:00

requirements.txt

Fixed failed tries to scan unimplemented services

2018-04-23 20:06:20 +03:00

services.py

initial commit

2018-03-26 17:25:30 +03:00

validation.py

initial commit

2018-03-26 17:25:30 +03:00

README.md

Kube Hunter

Insecure Kubernetes clusters detection tool.

Installation

Run the following commands to clone and install pre-requisites:

git clone git@bitbucket.org:scalock/kube-hunter.git
cd kube-hunter
pip install -R requirements.txt
./kube-hunter -h

Current Features

The following action are currently supported:

Hunt

Supplied a host IP, the tool will search for open Kubernetes services, listening to default ports.
For each service found, it will check if it is insecure and grants capabilities.

./kube-hunter hunt 127.0.0.1

Scan

Supplied a subnet address (CIDR notation), the tool will scan for hosts with open Kubernetes services.

Supported Kubernetes Services

The tool currently supports the following services:

Kubernetes Dashboard