kube-hunter icon indicating copy to clipboard operation
kube-hunter copied to clipboard

Published 20 hours ago verified publisher icon aquasecurity

also identify open cAdvisor

Open carnal0wnage opened this issue 6 years ago • 5 comments

It would be nice if kube-hunter also identified open cAdvisor

http://192.168.41.233:4194/api/v2.0/spec?recursive=true

carnal0wnage avatar Jan 04 '19 18:01 carnal0wnage

Hey, that's a great idea and we actually planning to add such hunter!

oriagmon avatar Jan 07 '19 11:01 oriagmon

Hi @carnal0wnage !

Sorry for taking forever to deal with this issue. Can you explain more about implications of finding an open cAdvisor endpoint? Are you familiar with cAdvisor vulnerabilities that we can scan for or information we can gather from such open service?

iyehuda avatar Oct 20 '19 13:10 iyehuda

@iYehuda It appears to me that getting the remote REST API of cAdvisor enables us to get a lot of info on all running containers, as per https://github.com/google/cadvisor/blob/master/docs/api.md

RaitoBezarius avatar Oct 30 '19 23:10 RaitoBezarius

Is this issue still unresolved?

swapniljha001 avatar Oct 09 '20 06:10 swapniljha001

@swapniljha001 Yes

danielsagi avatar Nov 28 '20 18:11 danielsagi