Kube-hunter – Hunt for security weaknesses in Kubernetes clusters

0
0

Kube-hunter is a tool that you can use to scan and secure your Kubernetes clusters. The tool was developed to increase awareness and visibility for security issues in Kubernetes environments. Tesla was one of the companies that have left hundreds of Kubernetes administration consoles accessible over the internet without security measures or password protection. scanning and monitoring changes on containers may help to avoid similar situations.

Kube-hunter will open an interactive session where you can run commands and select the scan option required. kube-hunter probes a domain or address range for open Kubernetes-related ports, and tests for any configuration issues that leave your cluster exposed to attackers.Currently the tool support three type of scanning:

  1. Remote scanning To specify remote machines for hunting
  2. Internal scanning To specify internal scanning
  3. Network scanning To specify a specific CIDR to scan
Kube-hunter - Hunt for security weaknesses in Kubernetes clusters

Kube-hunter – Hunt for security weaknesses in Kubernetes clusters

With this tool you can run passive test options . The actual hunting test lists are:

  • Kubelet Secure Ports Hunter  – Hunts specific endpoints on an open secured Kubelet
  • K8s Dashboard Discovery – Checks for the existence of a Dashboard
  • Dashboard Hunting – Hunts open Dashboards, gets the type of nodes in the cluster
  • Port Scanning – Scans Kubernetes known ports to determine open endpoints for discovery
  • Api Server Discovery – Checks for the existence of a an Api Server
  • Host Discovery – Generates ip adresses to scan, based on cluster/scan type
  • Kubelet Discovery –  Checks for the existence of a Kubelet service, and its open ports

There is also active test option and with this settings there is a risk of state-changing operations:

  • Kubelet Container Logs Hunter – Retrieves logs from a random container
  • Kubelet Run Hunter – Executes uname inside of a random container
  • Build Date Hunter -Hunts when proxy is exposed, extracts the build date of kubernetes

You can read more and download this tool over here: https://github.com/aquasecurity/

Share