https://github.com/theunknownsoul/awesome-kubernetes-pentesting-guide
My own kubernetes penetration testing favorite methodologies, script, tools and resources.
https://github.com/theunknownsoul/awesome-kubernetes-pentesting-guide
List: awesome-kubernetes-pentesting-guide
devsecops kubernetes security trivy-scan
Last synced: 2 months ago
JSON representation
My own kubernetes penetration testing favorite methodologies, script, tools and resources.
- Host: GitHub
- URL: https://github.com/theunknownsoul/awesome-kubernetes-pentesting-guide
- Owner: TheUnknownSoul
- Created: 2025-03-27T13:37:38.000Z (over 1 year ago)
- Default Branch: master
- Last Pushed: 2025-04-09T08:08:57.000Z (over 1 year ago)
- Last Synced: 2025-07-01T19:07:37.811Z (about 1 year ago)
- Topics: devsecops, kubernetes, security, trivy-scan
- Language: Shell
- Homepage:
- Size: 256 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Awesome Kubernetes Pentesting and DevSecOps hardening guide :skull: :pirate_flag: :lock:
My own kubernetes penetration testing methodology, some scripts, tools and favourite resources.
## Content
- [Information Gathering](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#information-gathering)
- [Authentication and Authorization](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [Pod Security Testing](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [API Security Testing](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [Misconfiguration Checks](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [Audit Logging](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [Tools and useful scripts](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
- [Containers and images security](https://github.com/TheUnknownSoul/awesome-kubernetes-pentesting-guide#)
## Information Gathering
* Identify the target cluster
* Enumerate components, version, entry points
* Find information about network architecture
### Network Reconnaissance
Basic scenario to detect all hosts, versions, OS and probe script engine. Without ping option.
```
sudo nmap -A -p- -T5 -oA -Pn
```
Additionally, to check network security you may use options below:
| nmap flag | Description |
|-----------|--------------------------------------------------------------------------------|
| -T0-5 | Speed of scanning (optionally) |
| -sS | TCP SYNC scan |
| -f | Fragmented packets (to detect anomalies in network behaviour) |
| -sA | TCP ACK scan |
| -sM | Maimon scan. Detects anomalies sending NULL, FIN and Xmas scan but without RST |
| -oA | Output in all formats. Will be useful at the report stage (optionally) |