Documentation
¶
Index ¶
- Variables
- func AllDiskMount() (error, []string)
- func CheckDockerRemoteAPI(url string) bool
- func CheckDockerSock(path string)
- func CheckFdisk()
- func CheckPidInject() bool
- func ContainerdPwn(shellCmd string, rhost string, rport string) error
- func DockerAPIPull(path string, image string)
- func DockerAPIRun(path string, cmd string)
- func DockerRemoteAPIExploit(api string, cmd string)
- func EscapeCgroup(cmd string) error
- func GetDockerAbsPath() string
- func GetNamespaces(serverAddr string) string
- func GetNodes(serverAddr string) string
- func MountToRandomTarget(device string) (error, string)
- func ProcfsExploit(procDir string, shellPayload string)
- func ReverseShell(connectString string)
- func SearchLocalFileText(StartDir string)
- type DINDAttackDeployS
- type DINDAttackS
- type DockerRemoteAPIS
- type ExploitCgroupS
- type FileScanS
- type K8sBackDoorDaemonsetS
- type K8sCronJobDeployS
- type K8sMitmClusteripS
- type K8sSecretsDumpS
- type K8sShadowApiServerS
- type PidInject
- type TEST
Constants ¶
This section is empty.
Variables ¶
View Source
var K8sDeploymentsAPI = "/apis/apps/v1/namespaces/default/deployments"
View Source
var K8sMitmPayloadDeploy = `` /* 908-byte string literal not displayed */
View Source
var K8sMitmPayloadSvc = `` /* 447-byte string literal not displayed */
View Source
var K8sServicesApi = "/api/v1/namespaces/default/services"
View Source
var MountCgroupCmd = `` /* 135-byte string literal not displayed */
MountCgroupCmd remount a write-able devices cgroup subsystem
Functions ¶
func AllDiskMount ¶
print all device and mount them to random path under /tmp
func CheckDockerRemoteAPI ¶ added in v0.1.10
func CheckDockerSock ¶
func CheckDockerSock(path string)
APIs Ref https://github.com/AbsoZed/DockerPwn.py/blob/master/createContainer.py curl --unix-socket /var/run/docker.sock http://127.0.0.1/info
func CheckPidInject ¶
func CheckPidInject() bool
func DockerAPIPull ¶
func DockerAPIRun ¶
APIs Ref https://github.com/AbsoZed/DockerPwn.py/blob/master/createContainer.py curl --unix-socket /var/run/docker.sock http://127.0.0.1/info
func DockerRemoteAPIExploit ¶ added in v0.1.10
func EscapeCgroup ¶
func GetDockerAbsPath ¶
func GetDockerAbsPath() string
func GetNamespaces ¶
func MountToRandomTarget ¶
func ProcfsExploit ¶
func ReverseShell ¶
func ReverseShell(connectString string)
func SearchLocalFileText ¶
func SearchLocalFileText(StartDir string)
Types ¶
type DINDAttackDeployS ¶
type DINDAttackDeployS struct{}
plugin interface
func (DINDAttackDeployS) Desc ¶
func (p DINDAttackDeployS) Desc() string
func (DINDAttackDeployS) Run ¶
func (p DINDAttackDeployS) Run() bool
type DINDAttackS ¶
type DINDAttackS struct{}
plugin interface
func (DINDAttackS) Desc ¶
func (p DINDAttackS) Desc() string
func (DINDAttackS) Run ¶
func (p DINDAttackS) Run() bool
type DockerRemoteAPIS ¶ added in v0.1.10
type DockerRemoteAPIS struct{}
plugin interface
func (DockerRemoteAPIS) Desc ¶ added in v0.1.10
func (p DockerRemoteAPIS) Desc() string
func (DockerRemoteAPIS) Run ¶ added in v0.1.10
func (p DockerRemoteAPIS) Run() bool
type ExploitCgroupS ¶
type ExploitCgroupS struct{}
plugin interface
func (ExploitCgroupS) Desc ¶
func (p ExploitCgroupS) Desc() string
func (ExploitCgroupS) Run ¶
func (p ExploitCgroupS) Run() bool
type K8sBackDoorDaemonsetS ¶
type K8sBackDoorDaemonsetS struct{}
plugin interface
func (K8sBackDoorDaemonsetS) Desc ¶
func (p K8sBackDoorDaemonsetS) Desc() string
func (K8sBackDoorDaemonsetS) Run ¶
func (p K8sBackDoorDaemonsetS) Run() bool
type K8sCronJobDeployS ¶
type K8sCronJobDeployS struct{}
plugin interface
func (K8sCronJobDeployS) Desc ¶
func (p K8sCronJobDeployS) Desc() string
func (K8sCronJobDeployS) Run ¶
func (p K8sCronJobDeployS) Run() bool
type K8sMitmClusteripS ¶
type K8sMitmClusteripS struct{}
plugin interface
func (K8sMitmClusteripS) Desc ¶
func (p K8sMitmClusteripS) Desc() string
func (K8sMitmClusteripS) Run ¶
func (p K8sMitmClusteripS) Run() bool
type K8sSecretsDumpS ¶
type K8sSecretsDumpS struct{}
plugin interface
func (K8sSecretsDumpS) Desc ¶
func (p K8sSecretsDumpS) Desc() string
func (K8sSecretsDumpS) Run ¶
func (p K8sSecretsDumpS) Run() bool
type K8sShadowApiServerS ¶
type K8sShadowApiServerS struct{}
plugin interface
func (K8sShadowApiServerS) Desc ¶
func (p K8sShadowApiServerS) Desc() string
func (K8sShadowApiServerS) Run ¶
func (p K8sShadowApiServerS) Run() bool
Source Files
¶
- check_ptrace.go
- containerd_shim_pwn.go
- deploy_webshell.go
- docker_api_pwn.go
- docker_runc.go
- docker_sock_check.go
- docker_sock_pwn.go
- file_scan.go
- istio_check.go
- k8s_backdoor_daemonset.go
- k8s_cluster_info.go
- k8s_clusterip_mitm.go
- k8s_configmap_dump.go
- k8s_cronjob.go
- k8s_secret_dump.go
- k8s_shadow_apiserver.go
- lxcfs_rw.go
- mount_cgroup.go
- mount_device.go
- mount_procfs.go
- reverse_shell.go
- rewrite_cgroup_devices.go
- service_probe.go
- test_poc.go
Click to show internal directories.
Click to hide internal directories.