lightspin-tech/red-kube
Red Team KubeCTL Cheat Sheet
| repo name | lightspin-tech/red-kube |
| repo link | https://github.com/lightspin-tech/red-kube |
| homepage | |
| language | |
| size (curr.) | 531 kB |
| stars (curr.) | 152 |
| created | 2020-10-14 |
| license | Apache License 2.0 |
Red Team KubeCTL Cheat Sheet
Red Kube is a red team cheat sheet based on kubectl commands.
Warning: You should NOT use red-kube commands on a Kubernetes cluster that you don’t own!
Prerequisites:
kubectl
sudo apt-get update && sudo apt-get install -y apt-transport-https gnupg2 curl
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -
echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/apt/sources.list.d/kubernetes.list
sudo apt-get update
sudo apt-get install -y kubectlsudo apt-get update -y
jq
sudo apt-get update -y
sudo apt-get install -y jq
Commands by MITRE ATT&CK Tactics
| Tactic | Count |
|---|---|
| Initial Access | 0 |
| Execution | 1 |
| Persistence | 0 |
| Privilege Escalation | 4 |
| Defense Evasion | 0 |
| Credential Access | 7 |
| Discovery | 14 |
| Lateral Movement | 0 |
| Collection | 0 |
| Command and Control | 1 |
| Exfiltration | 0 |
| Impact | 0 |
Webinars
#1 First Workshop with Lab01 and Lab02 Webinar Link
TODO
Defense Evasion: Delete API Audit Logs
Privilege Escalation: Using escalate verb
Collection: Dump all configmaps and env to a file
License
This repository is available under the Apache License 2.0.
