Documentation ¶
Index ¶
- Constants
- func AllDiskMount() (error, []string)
- func CapDacReadSearchExploit(target, ref string, chroot bool, cmd []string) error
- func CheckDebugfs() bool
- func CheckDockerRemoteAPI(url string) bool
- func CheckDockerSock(path string) error
- func CheckFdisk()
- func CheckPidInject() bool
- func ContainerdPwn(shellCmd string, rhost string, rport string) error
- func DockerAPIPull(path string, image string) error
- func DockerAPIRun(path string, cmd string) error
- func DockerRemoteAPIExploit(api string, cmd string)
- func DockerSockExploit(sock string, cmd string) bool
- func EscapeCgroup(cmd string, subSystemName string) error
- func ExploitLXCFS() bool
- func ExploitLXCFSCgroup() bool
- func FindDir(path string) string
- func FindReleaseAgentSubSystem() string
- func GetDockerAbsPath() string
- func IsDir(path string) bool
- func MountToRandomTarget(device string) (error, string)
- func ProcfsExploit(procDir string, shellPayload string)
- func UnprivUserNS(cmd string) error
- type CapDacReadSearch
- type DINDAttackDeployS
- type DINDAttackS
- type DockerRemoteAPIS
- type ExploitCgroupS
- type ExploitUnprivUserNS
- type PidInject
- type VarLogEscape
Constants ¶
View Source
const DefaultFolderPerm = 0755
Variables ¶
This section is empty.
Functions ¶
func AllDiskMount ¶
print all device and mount them to random path under /tmp
func CapDacReadSearchExploit ¶
func CheckDockerRemoteAPI ¶
func CheckDockerSock ¶
APIs Ref https://github.com/AbsoZed/DockerPwn.py/blob/master/createContainer.py curl --unix-socket /var/run/docker.sock http://127.0.0.1/info
func CheckPidInject ¶
func CheckPidInject() bool
func DockerAPIPull ¶
func DockerAPIRun ¶
APIs Ref https://github.com/AbsoZed/DockerPwn.py/blob/master/createContainer.py curl --unix-socket /var/run/docker.sock http://127.0.0.1/info
func DockerRemoteAPIExploit ¶
func DockerSockExploit ¶
func EscapeCgroup ¶
func ExploitLXCFS ¶
func ExploitLXCFS() bool
func ExploitLXCFSCgroup ¶
func ExploitLXCFSCgroup() bool
func FindReleaseAgentSubSystem ¶
func FindReleaseAgentSubSystem() string
func GetDockerAbsPath ¶
func GetDockerAbsPath() string
func MountToRandomTarget ¶
func ProcfsExploit ¶
func UnprivUserNS ¶
Types ¶
type CapDacReadSearch ¶
type CapDacReadSearch struct{ base.BaseExploit }
plugin interface
func (CapDacReadSearch) Desc ¶
func (p CapDacReadSearch) Desc() string
func (CapDacReadSearch) Run ¶
func (p CapDacReadSearch) Run() bool
type DINDAttackDeployS ¶
type DINDAttackDeployS struct{ base.BaseExploit }
plugin interface
func (DINDAttackDeployS) Desc ¶
func (p DINDAttackDeployS) Desc() string
func (DINDAttackDeployS) Run ¶
func (p DINDAttackDeployS) Run() bool
type DINDAttackS ¶
type DINDAttackS struct{ base.BaseExploit }
plugin interface
func (DINDAttackS) Desc ¶
func (p DINDAttackS) Desc() string
func (DINDAttackS) Run ¶
func (p DINDAttackS) Run() bool
type DockerRemoteAPIS ¶
type DockerRemoteAPIS struct{ base.BaseExploit }
plugin interface
func (DockerRemoteAPIS) Desc ¶
func (p DockerRemoteAPIS) Desc() string
func (DockerRemoteAPIS) Run ¶
func (p DockerRemoteAPIS) Run() bool
type ExploitCgroupS ¶
type ExploitCgroupS struct{ base.BaseExploit }
plugin interface
func (ExploitCgroupS) Desc ¶
func (p ExploitCgroupS) Desc() string
func (ExploitCgroupS) Run ¶
func (p ExploitCgroupS) Run() bool
type ExploitUnprivUserNS ¶
type ExploitUnprivUserNS struct{ base.BaseExploit }
func (ExploitUnprivUserNS) Desc ¶
func (exp ExploitUnprivUserNS) Desc() string
func (ExploitUnprivUserNS) Run ¶
func (exp ExploitUnprivUserNS) Run() bool
type VarLogEscape ¶
type VarLogEscape struct{ base.BaseExploit }
func (VarLogEscape) Desc ¶
func (p VarLogEscape) Desc() string
func (VarLogEscape) Run ¶
func (p VarLogEscape) Run() bool
Source Files ¶
Click to show internal directories.
Click to hide internal directories.