Esonhugh Skyworship

Unicode Error Break one scan and all after it

4

Unhandled exception (UnicodeError) encountered during scan.Please report this as a bug: ['Traceback (most recent call last):\n', ' File "/usr/lib/python3.8/encodings/idna.py", line 181, in encode\n result.extend(ToASCII(label))\n', ' File "/usr/lib/python3.8/encodings/idna.py", line 76, in...

安装相关

4

https://github.com/kongyuebin1/dongfeng-pay/blob/26ac788ac53f5ea706f1e8b5b5657ca5e825c7ff/gateway/routers/router.go#L22 这里 22 23 两行 导致 启动失败 需要改成 "*: " 开头 否则就会 panic 报错

脚本适用于 受控网络环境下 但是暴露 mock 在外而且防护也不是很全的时候 RCE 使用 注册可以由自己完成

Refer: https://github.com/Esonhugh/KubernetesCRInjection. Here is my documents. I think this is a **Potential** attack surface in SaaS system which based on kubernetes. After I discussed with some Cloud security Researchers about...

## Not Work when empty or small /root/.ssh/authorized_keys file This ebpf program will modify the buffer (send to read syscall) last `max_payload_len` bytes data to our ssh public key. The...

Headless service usually has only A records and no PTR record. So k8spider looks hard in detection such stuff.

using counting to make -v -vv works with debug and trace level instead of -v trace

Currently, k8spider is using Environment Variable to auto detect the kubernetes services and their subnets. So we should intro a new command called `detect` to get the subnets information, when...

This Record Struct like is ambiguous. I think it should be defined well. ### current ``` type Record struct { Ip net.IP SvcDomain string SrvRecords []SrvRecord Extra string `json:"Extra,omitempty"` }...