tag:github.com,2008:https://github.com/cyberark/kubesploit/releasesRelease notes from kubesploit2022-02-09T10:55:42Ztag:github.com,2008:Repository/337456688/v0.1.32022-02-09T11:49:05Zv0.1.3<ul>
<li>Update Docker server usage (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1043862776" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/4" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/4/hovercard" href="https://github.com/cyberark/kubesploit/pull/4">#4</a> <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/aviadhahami/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/aviadhahami">@aviadhahami</a>)</li>
<li>Fix bug with marshling: "Failed to print unexpected end of JSON input" (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1092015482" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/5" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/5/hovercard" href="https://github.com/cyberark/kubesploit/pull/5">#5</a>)</li>
<li>Adding golang version pre-reqs from traefik/yaegi (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1106122655" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/7" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/7/hovercard" href="https://github.com/cyberark/kubesploit/pull/7">#7</a> by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/elreydetoda/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/elreydetoda">@elreydetoda</a>)</li>
<li>Add colors to the vulnerability scan module (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1119565813" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/9" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/9/hovercard" href="https://github.com/cyberark/kubesploit/pull/9">#9</a>)</li>
<li>New modules and new modifications (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1113703031" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/8" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/8/hovercard" href="https://github.com/cyberark/kubesploit/pull/8">#8</a> by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/yanivyakobovich/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/yanivyakobovich">@yanivyakobovich</a>)):
<ul>
<li>cGroup Breakout module (JSON and source code).</li>
<li>Kernel Module Breakout module (JSON and source code).</li>
<li>Deepce module (JSON and source code).</li>
<li>Vulnerability test module (JSON and source code).</li>
<li>CODE_OF_CONDUCT.md</li>
<li>Option to add sh/bash modules as source code modules.</li>
</ul>
</li>
<li>Adding features to kernel escape module and shellscript loading (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1124918486" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/10" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/10/hovercard" href="https://github.com/cyberark/kubesploit/pull/10">#10</a>)</li>
<li>Bugfix (exec.go) and kernel module improvement (<a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="1128330528" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/11" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/11/hovercard" href="https://github.com/cyberark/kubesploit/pull/11">#11</a> )</li>
<li>Remove <code>log.Fatal</code> from CVE scanner module</li>
</ul>
<p>Build ID: <code>fb4471b2ff18662c706e676a7f24c33168eb9456</code></p>
<h4>The Server downloads contain a copy of all compiled agents in the data/bin directory</h4>
<blockquote>
<p>The compressed files have a password of <code>kubesploit</code></p>
</blockquote>g3rzitag:github.com,2008:Repository/337456688/v0.1.22021-09-29T11:23:56Zv0.1.2<ul>
<li>Merged pull request <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="916247412" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/3" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/3/hovercard" href="https://github.com/cyberark/kubesploit/pull/3">#3</a> (by <a class="user-mention notranslate" data-hovercard-type="user" data-hovercard-url="/users/yanivyakobovich/hovercard" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/yanivyakobovich">@yanivyakobovich</a>): Var-log-escape module</li>
</ul>
<blockquote>
<p>The Server downloads contain a copy of all compiled agents in the data/bin directory<br>
The compressed files have a password of <code>kubesploit</code></p>
</blockquote>g3rzitag:github.com,2008:Repository/337456688/v0.1.12021-04-04T14:10:13Zv0.1.1<p>Update after pull request <a class="issue-link js-issue-link" data-error-text="Failed to load title" data-id="849877248" data-permission-text="Title is private" data-url="https://github.com/cyberark/kubesploit/issues/1" data-hovercard-type="pull_request" data-hovercard-url="/cyberark/kubesploit/pull/1/hovercard" href="https://github.com/cyberark/kubesploit/pull/1">#1</a>:</p>
<ul>
<li>Fix bug with parsing modules</li>
<li>Fix bug with mounting breakout module</li>
<li>Fix issue with Makefile</li>
</ul>
<p>Build ID: <a class="commit-link" data-hovercard-type="commit" data-hovercard-url="https://github.com/cyberark/kubesploit/commit/3e8ae779c355e325b1f667efefa433e5373b6f1e/hovercard" href="https://github.com/cyberark/kubesploit/commit/3e8ae779c355e325b1f667efefa433e5373b6f1e"><tt>3e8ae77</tt></a></p>
<blockquote>
<p>The Server downloads contain a copy of all compiled agents in the data/bin directory<br>
The compressed files have a password of <code>kubesploit</code></p>
</blockquote>g3rzitag:github.com,2008:Repository/337456688/v0.1.02021-04-01T13:40:16Zv0.1.0<h3>New Features:</h3>
<ul>
<li>Integration with <a href="https://github.com/traefik/yaegi">Go Interpreter "Yaegi"</a>.</li>
<li>Support Golang modules</li>
<li>New <code>config.yaml</code> for automate configurations</li>
<li>Option to remove all agents with a single <code>all</code> command</li>
</ul>
<p>New modules related to containers and Kubernetes:</p>
<ul>
<li>Container breakout using mounting</li>
<li>Container breakout using docker.sock</li>
<li>Container breakout using <a title="CVE-2019-5736" data-hovercard-type="advisory" data-hovercard-url="/advisories/GHSA-gxmr-w5mj-v8hh/hovercard" href="https://github.com/advisories/GHSA-gxmr-w5mj-v8hh">CVE-2019-5736</a> exploit</li>
<li>Scan for Kubernetes cluster known CVEs</li>
<li>Port scanning with focus on Kubernetes services</li>
<li>Kubernetes service scan from within the container</li>
<li>Light <a href="https://github.com/cyberark/kubeletctl">kubeletctl</a> containing the following options:
<ul>
<li>Scan for containers with RCE</li>
<li>Scan for Pods and containers</li>
<li>Scan for tokens from all available containers</li>
<li>Run command with multiple options</li>
</ul>
</li>
</ul>
<p>Build ID: <code>526911f8cd6c6377bbc62ebabc7a7753ac8ea799</code></p>
<h4>The Server downloads contain a copy of all compiled agents in the data/bin directory</h4>
<blockquote>
<p>The compressed files have a password of <code>kubesploit</code></p>
</blockquote>g3rzi