Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add scenario "Kubelet Pods Information Disclosure" #1

Open
myugan opened this issue Jun 16, 2020 · 1 comment
Open

Add scenario "Kubelet Pods Information Disclosure" #1

myugan opened this issue Jun 16, 2020 · 1 comment
Assignees
@madhuakula
Labels
enhancement New feature or request

Comments

@myugan
Copy link

myugan commented Jun 16, 2020

This scenario will show how an attacker can leverage Kubelet API endpoint to gaining privileges access into a cluster.

https://labs.f-secure.com/blog/attacking-kubernetes-through-kubelet/
@madhuakula madhuakula added the enhancement New feature or request label Jun 16, 2020
@madhuakula
Copy link
Owner

Hey @myugan

Thanks for the request. I also have some scenarios wanted to build and couldn't as it doesn't support all the Kubernetes environments. Like some scenarios required specific cluster version and configuration.

But, I will try to at least add documentation and steps to perform with screenshots for learning purposes.

Feel free to make a PR :)

Thanks again!

@madhuakula madhuakula self-assigned this Feb 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@madhuakula madhuakula

Labels
enhancement New feature or request
Projects
Kubernetes Goat
Status: 🌳 Backlog
Milestone
No milestone
Development

No branches or pull requests
2 participants
@madhuakula @myugan