kube-hunter

Hunt for security weaknesses in Kubernetes clusters

APACHE-2.0 License

Downloads
1.4K
Stars
4.6K
Committers
78
View Code on GitHub View on X
Ecosystems: Python

Bot releases are visible (Hide)

kube-hunter - v0.6.8 Latest Release

Published by github-actions[bot] over 2 years ago

Remove scapy usage (#500)

  • removed arp and dns hunters usage due to it's violations of the scapy GPL2 license

  • added installation of arp and dns hunters to Dockerfile

  • added explicit new version to plugins in dockerfile installation

  • ignore B020 flake8

Fix: Removed automatic import of handler object (#506)

  • removed automatic import of handler object in events package and renamed handler.py to event_handler.py to solve name collision
kube-hunter - v0.6.6

Published by github-actions[bot] over 2 years ago

kube-hunter - v0.6.5

Published by github-actions[bot] over 2 years ago

kube-hunter - v0.6.4

Published by github-actions[bot] over 2 years ago

  • Ignore https certificate verification on dispatchers (#484)
  • Added correct exception handling for discovery of Metadata apis (#488)
  • Added MITRE documentation in README (#485)
kube-hunter - v0.6.3

Published by github-actions[bot] about 3 years ago

kube-hunter - v0.6.2

Published by github-actions[bot] about 3 years ago

Feature: Changed vulnerability categories to support MITRE ATT&CK (#474)

  • Refactored all categories to the new MITRE attack matrix format
  • Changed format of vulnerabilities table to display the mitre technique related to the vulnerability
kube-hunter - v0.6.1

Published by github-actions[bot] over 3 years ago

kube-hunter - v0.6.0

Published by github-actions[bot] over 3 years ago

  • Feature: New Service Account Token Flag (#463)
  • changed exception logs to debug logs in kubernetes_client nodes discovery (#470)
kube-hunter - v0.5.2

Published by github-actions[bot] over 3 years ago

kube-hunter - v0.5.1

Published by github-actions[bot] over 3 years ago

kube-hunter - v0.4.1

Published by github-actions[bot] almost 4 years ago

kube-hunter - v0.4.0

Published by danielsagi almost 4 years ago

Stable version

  • Updated KB links to point to Aqua Vulnerability Database (new avd_reference link in json output)
  • Bugfix: false positive on passive discovering an open /run debug handler
  • More intuitive message when ProveSystemLogs cannot find evidence
  • Added new KHV for exposed pods
kube-hunter - v0.3.2

Published by danielsagi almost 4 years ago

  • Fixed a bug in certificate hunting
  • Fixed critical bug in ARP spoofing hunting
  • Fixed multiple bugs in Etcd hunting
  • Fixed critical bugs in Kubelet hunting
  • Refactored argument parsing
  • Improvements on imports
  • Added dynamic plugins support using pluggy project
  • Added Two new Kubelet Hunters:
    • ProveAnonymousAuth
    • MaliciousIntentViaSecureKubeletPort
  • Added multistage to Dockerfile and general improvements
  • Increased Evidence field preview length in table logs
  • Fixed bugs and improved AzureSpnHunter
kube-hunter - v0.3.1

Published by iyehuda over 4 years ago

  • Remove support of plugins
  • Refactored dynamic imports into static ones
  • Add timeout for network operations
  • Improve logging
  • Optimize cloud discovery
  • Enforcing code linting
  • Support ignoring addresses when scanning subnets
kube-hunter - v0.3.0

Published by iyehuda over 4 years ago

#300 Fix Dockerfile build
Cache dependencies for docker build

kube-hunter - v0.3.0-rc1

Published by lizrice over 4 years ago

#281 Fix empty report
#283 Refactor configuration
#298 Add Makefile
#299 Correct KB link

kube-hunter - Initial release

Published by lizrice almost 5 years ago

From now on we will be tagging releases!

Package Rankings
Top 5.39% on Pypi.org
Related Projects
parca-agent

eBPF based always-on profiler auto-discovering targets in Kubernetes and systemd, zero code chang...

06 May 2021 471
kube-shell

Kubernetes shell: An integrated shell for working with the Kubernetes

15 Jun 2017 2,370