Kube-hunter

Kube-hunter is an open-source tool that hunts for security issues in your kubernetes clusters.

Version: latest
Website: https://github.com/aquasecurity/kube-hunter
Maintainer: @milindchawre
Category: Security

Using kube-hunter

Usage instruction

Here we run kube-hunter in a pod within the cluster. This gives an indication of how exposed your cluster would be in the event that one of your application pods is compromised (through a software vulnerability, for example).

Check the logs of the kube-hunter pod to see the results. ```

Get the pod name

$ kubectl -n kube-hunter describe job kube-hunter

Check the logs

$ kubectl -n kube-hunter logs ```

When the kube-hunter reports an issue, it will show its VID (Vulnerability ID) in the pod logs. You can further explore about that vulnerability by putting the VID on this site.

If you want to run kube-hunter on daily basis, feel free to convert it to a cronjob.

To know more, check this official guide.

Kubernetes

Compute

Load balancers

Databases

CivoStack Enterprise

Edge

Kubeflow as a Service BETA

Cloud GPU

Carbon neutral GPU

Startups

Small & mid-market

SaaS companies

CI / Testing

Move to Kubernetes

Case studies & testimonials

Learn

Blog

White papers

Documentation

Civo news

Meetups

Marketplace

Use Civo for your demos

Kube-hunter

Using kube-hunter

Usage instruction

Get the pod name

Check the logs