mirror of
https://github.com/Ed1s0nZ/CyberStrikeAI.git
synced 2026-03-31 00:09:29 +02:00
66 lines
1.6 KiB
YAML
66 lines
1.6 KiB
YAML
name: "kube-hunter"
|
||
command: "kube-hunter"
|
||
enabled: true
|
||
short_description: "Kubernetes渗透测试工具"
|
||
description: |
|
||
Kube-hunter是一个Kubernetes渗透测试工具,用于发现Kubernetes集群中的安全问题。
|
||
|
||
**主要功能:**
|
||
- Kubernetes安全扫描
|
||
- 漏洞发现
|
||
- 配置问题检测
|
||
- 主动和被动模式
|
||
|
||
**使用场景:**
|
||
- Kubernetes安全测试
|
||
- 集群安全评估
|
||
- 渗透测试
|
||
- 安全审计
|
||
parameters:
|
||
- name: "target"
|
||
type: "string"
|
||
description: "特定目标扫描"
|
||
required: false
|
||
flag: "--remote"
|
||
format: "flag"
|
||
- name: "cidr"
|
||
type: "string"
|
||
description: "CIDR范围扫描"
|
||
required: false
|
||
flag: "--cidr"
|
||
format: "flag"
|
||
- name: "interface"
|
||
type: "string"
|
||
description: "网络接口扫描"
|
||
required: false
|
||
flag: "--interface"
|
||
format: "flag"
|
||
- name: "active"
|
||
type: "bool"
|
||
description: "启用主动扫描(可能有风险)"
|
||
required: false
|
||
flag: "--active"
|
||
format: "flag"
|
||
default: false
|
||
- name: "report"
|
||
type: "string"
|
||
description: "报告格式(json, yaml)"
|
||
required: false
|
||
flag: "--report"
|
||
format: "flag"
|
||
default: "json"
|
||
- name: "additional_args"
|
||
type: "string"
|
||
description: |
|
||
额外的kube-hunter参数。用于传递未在参数列表中定义的kube-hunter选项。
|
||
|
||
**示例值:**
|
||
- 根据工具特性添加常用参数示例
|
||
|
||
**注意事项:**
|
||
- 多个参数用空格分隔
|
||
- 确保参数格式正确,避免命令注入
|
||
- 此参数会直接追加到命令末尾
|
||
required: false
|
||
format: "positional"
|