Red Kube is a red team cheat sheet based on kubectl commands.
Warning: You should NOT use red-kube commands on a Kubernetes cluster that you don't own!
kubectl
sudo apt-get update && sudo apt-get install -y apt-transport-https gnupg2 curl
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo apt-key add -
echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" | sudo tee -a /etc/apt/sources.list.d/kubernetes.list
sudo apt-get update
sudo apt-get install -y kubectlsudo apt-get update -y
jq
sudo apt-get update -y
sudo apt-get install -y jq
Tactic | Count |
---|---|
Initial Access | 0 |
Execution | 1 |
Persistence | 0 |
Privilege Escalation | 4 |
Defense Evasion | 0 |
Credential Access | 7 |
Discovery | 14 |
Lateral Movement | 0 |
Collection | 0 |
Command and Control | 1 |
Exfiltration | 0 |
Impact | 0 |
#1 First Workshop with Lab01 and Lab02 Webinar Link
Defense Evasion: Delete API Audit Logs
Privilege Escalation: Using escalate verb
Collection: Dump all configmaps and env to a file
This repository is available under the Apache License 2.0.