tag:github.com,2008:https://github.com/cyberark/kubesploit/releases Release notes from kubesploit 2022-02-09T10:55:42Z tag:github.com,2008:Repository/337456688/v0.1.3 2022-02-09T11:49:05Z v0.1.3 <ul> <li>Update Docker server usage (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1043862776" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/4" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/4/hovercard" href="https://github.com/cyberark/kubesploit/pull/4">#4</a> <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/aviadhahami/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/aviadhahami">@aviadhahami</a>)</li> <li>Fix bug with marshling: "Failed to print unexpected end of JSON input" (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1092015482" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/5" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/5/hovercard" href="https://github.com/cyberark/kubesploit/pull/5">#5</a>)</li> <li>Adding golang version pre-reqs from traefik/yaegi (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1106122655" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/7" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/7/hovercard" href="https://github.com/cyberark/kubesploit/pull/7">#7</a> by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/elreydetoda/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/elreydetoda">@elreydetoda</a>)</li> <li>Add colors to the vulnerability scan module (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1119565813" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/9" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/9/hovercard" href="https://github.com/cyberark/kubesploit/pull/9">#9</a>)</li> <li>New modules and new modifications (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1113703031" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/8" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/8/hovercard" href="https://github.com/cyberark/kubesploit/pull/8">#8</a> by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/yanivyakobovich/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/yanivyakobovich">@yanivyakobovich</a>)): <ul> <li>cGroup Breakout module (JSON and source code).</li> <li>Kernel Module Breakout module (JSON and source code).</li> <li>Deepce module (JSON and source code).</li> <li>Vulnerability test module (JSON and source code).</li> <li>CODE_OF_CONDUCT.md</li> <li>Option to add sh/bash modules as source code modules.</li> </ul> </li> <li>Adding features to kernel escape module and shellscript loading (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1124918486" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/10" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/10/hovercard" href="https://github.com/cyberark/kubesploit/pull/10">#10</a>)</li> <li>Bugfix (exec.go) and kernel module improvement (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1128330528" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/11" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/11/hovercard" href="https://github.com/cyberark/kubesploit/pull/11">#11</a> )</li> <li>Remove <code>log.Fatal</code> from CVE scanner module</li> </ul> <p>Build ID: <code>fb4471b2ff18662c706e676a7f24c33168eb9456</code></p> <h4>The Server downloads contain a copy of all compiled agents in the data/bin directory</h4> <blockquote> <p>The compressed files have a password of <code>kubesploit</code></p> </blockquote> g3rzi tag:github.com,2008:Repository/337456688/v0.1.2 2021-09-29T11:23:56Z v0.1.2 <ul> <li>Merged pull request <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="916247412" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/3" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/3/hovercard" href="https://github.com/cyberark/kubesploit/pull/3">#3</a> (by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/yanivyakobovich/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/yanivyakobovich">@yanivyakobovich</a>): Var-log-escape module</li> </ul> <blockquote> <p>The Server downloads contain a copy of all compiled agents in the data/bin directory<br> The compressed files have a password of <code>kubesploit</code></p> </blockquote> g3rzi tag:github.com,2008:Repository/337456688/v0.1.1 2021-04-04T14:10:13Z v0.1.1 <p>Update after pull request <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="849877248" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/1" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/1/hovercard" href="https://github.com/cyberark/kubesploit/pull/1">#1</a>:</p> <ul> <li>Fix bug with parsing modules</li> <li>Fix bug with mounting breakout module</li> <li>Fix issue with Makefile</li> </ul> <p>Build ID: <a class="commit-link" data-hovercard-type="commit" data-hovercard-url="https://github.com/cyberark/kubesploit/commit/3e8ae779c355e325b1f667efefa433e5373b6f1e/hovercard" href="https://github.com/cyberark/kubesploit/commit/3e8ae779c355e325b1f667efefa433e5373b6f1e"><tt>3e8ae77</tt></a></p> <blockquote> <p>The Server downloads contain a copy of all compiled agents in the data/bin directory<br> The compressed files have a password of <code>kubesploit</code></p> </blockquote> g3rzi tag:github.com,2008:Repository/337456688/v0.1.0 2021-04-01T13:40:16Z v0.1.0 <h3>New Features:</h3> <ul> <li>Integration with <a href="https://github.com/traefik/yaegi">Go Interpreter "Yaegi"</a>.</li> <li>Support Golang modules</li> <li>New <code>config.yaml</code> for automate configurations</li> <li>Option to remove all agents with a single <code>all</code> command</li> </ul> <p>New modules related to containers and Kubernetes:</p> <ul> <li>Container breakout using mounting</li> <li>Container breakout using docker.sock</li> <li>Container breakout using <a title="CVE-2019-5736" data-hovercard-type="advisory" data-hovercard-url="/advisories/GHSA-gxmr-w5mj-v8hh/hovercard" href="https://github.com/advisories/GHSA-gxmr-w5mj-v8hh">CVE-2019-5736</a> exploit</li> <li>Scan for Kubernetes cluster known CVEs</li> <li>Port scanning with focus on Kubernetes services</li> <li>Kubernetes service scan from within the container</li> <li>Light <a href="https://github.com/cyberark/kubeletctl">kubeletctl</a> containing the following options: <ul> <li>Scan for containers with RCE</li> <li>Scan for Pods and containers</li> <li>Scan for tokens from all available containers</li> <li>Run command with multiple options</li> </ul> </li> </ul> <p>Build ID: <code>526911f8cd6c6377bbc62ebabc7a7753ac8ea799</code></p> <h4>The Server downloads contain a copy of all compiled agents in the data/bin directory</h4> <blockquote> <p>The compressed files have a password of <code>kubesploit</code></p> </blockquote> g3rzi