Bonan Ruan
Bonan Ruan
thank @terenceli for advising
Currently Metarget is used to create cloud native vulnerabilities, but it could also facilitate the process of kernel vulnerabilities construction. Hence, we plan to support more Linux kernel vulnerabilities.
Metarget will support nested virtualization by integrating with Vagrant and QEMU. So we can construct complex vulnerable targets within stand-alone VMs.
Currently Metarget does not support removal of kernel, which means if we install some vulnerable kernels we must remove them later manually. Metarget should help to delete kernel files which...
E.g. for `cve-2020-15257` which needs two gadgets (`docker-ce` and `containerd`), if Metarget finds `docker-ce` with specified version has been installed, it should just pop this gadget out of the temp_gadgets...
Currently we install docker using `apt`, while on some versions of Ubuntu (e.g. 20.04) dependencies could not be resolved.
Currently for each vulnerability we specify a specific version of component. If that version has been installed, we do not have to install the vulnerability again. It will be better...