Skip to content

Releases: aquasecurity/kube-hunter

v0.6.8

18 May 11:07
a578726
Compare
Choose a tag to compare

Remove scapy usage (#500)

  • removed arp and dns hunters usage due to it's violations of the scapy GPL2 license

  • added installation of arp and dns hunters to Dockerfile

  • added explicit new version to plugins in dockerfile installation

  • ignore B020 flake8

Fix: Removed automatic import of handler object (#506)

  • removed automatic import of handler object in events package and renamed handler.py to event_handler.py to solve name collision

v0.6.6

07 May 06:13
e6a3c12
Compare
Choose a tag to compare
Remove scapy usage (#500)

* removed arp and dns hunters usage due to it's violations of the scapy GPL2 license

* added installation of arp and dns hunters to Dockerfile

* added explicit new version to plugins in dockerfile installation

* ignore B020 flake8

v0.6.5

28 Jan 16:56
7c62cc2
Compare
Choose a tag to compare
Feature: Custom Hunting (#489)

* added partial and partial-names flag. mechanism for whitelisting hunter subscrption for custom hunts

* changed name from partial to custom

* ran black to format

* flake8 formatting

* added documentation in readme for Custom hunting and made Advanced Usage a higher level topic

* added Collector, StartedInfo and SendFullReport to the core_hunters

* changed old name class-names to raw-hunter-names

* fixed bug in import loop

v0.6.4

22 Jan 14:22
c17aa17
Compare
Choose a tag to compare
  • Ignore https certificate verification on dispatchers (#484)
  • Added correct exception handling for discovery of Metadata apis (#488)
  • Added MITRE documentation in README (#485)

v0.6.3

16 Oct 14:51
00eb0df
Compare
Choose a tag to compare
Switched CVE Hunting to optional & Minor core feature (#482)

* Removed automatic registration of the k8s CVE hunter

* Made CVE hunting optional, default set to not run

v0.6.2

16 Oct 14:28
8d045fb
Compare
Choose a tag to compare

Feature: Changed vulnerability categories to support MITRE ATT&CK (#474)

  • Refactored all categories to the new MITRE attack matrix format
  • Changed format of vulnerabilities table to display the mitre technique related to the vulnerability

v0.6.1

23 Jul 18:12
473e4fe
Compare
Choose a tag to compare
Make gateway discovery always run when running as pod #471

v0.6.0

22 Jul 12:59
f67f082
Compare
Choose a tag to compare
  • Feature: New Service Account Token Flag (#463)
  • changed exception logs to debug logs in kubernetes_client nodes discovery (#470)

v0.5.2

10 Jun 17:05
6689005
Compare
Choose a tag to compare
K8s autodiscovery (#453)

* Add a new dependency on Kubernetes package

* Add and store a new flag about automatic nodes discovery from a pod

* Implement the listing of nodes

* Add tests to cover the k8s node listing

* Fix the k8s listing test to ensure the load incluster function is actually called

* Add more help to the k8s node discovery flags, and cross-reference them.

* Add a note on the Kubernetes auto-discovery in the main README file

* Move the kubernetes discovery from conf to modules/discovery

* When running with --pods, run the Kubernetes auto discovery

* Also mention that the auto discovery is always on when using --pod

Co-authored-by: Mikolaj Pawlikowski <mpawlikowsk1@bloomberg.net>

v0.5.1

27 May 18:57
0b90e0e
Compare
Choose a tag to compare
Bugfix - Aws metadata api discovery (#455)

* fixed aws metadata bug

* added new black reformatting