forked from Ne0nd0g/merlin
-
Notifications
You must be signed in to change notification settings - Fork 115
Scanning Modules Guide
yanivyakobovich edited this page Jan 17, 2022
·
1 revision
Modules:
- Clusters CVE's: Scan for Kubernetes cluster known CVEs
- Port scan: Port scanning with focus on Kubernetes services
- Services: Kubernetes service scan from within the container
- Deepce (https://github.com/stealthcopter/deepce):
- Container ID & name (via reverse DNS)
- Container IP / DNS Server
- Docker Version
- Interesting mounts
- Passwords in common files
- Environment variables
- Password hashes
- Common sensitive files stored in containers
- Other containers on the same network
- Port scan other containers, and the host machine itself
- Find exposed docker sock
- Vulnerabilities test: Test which exploits does the running container is vulnerable to
Wish to contribute module?
Exploit Module Guide
- cGroup Breakout
- Mount Breakout
- DockerSock Breakout
- Kubelet Attack
- Var Log Escape
- Kernel Module Breakout
Other Modules