Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Integrate Container Hacking Targets and Harpoon Tool #65

Open
corysabol opened this issue Dec 2, 2018 · 0 comments
Open

Integrate Container Hacking Targets and Harpoon Tool #65

corysabol opened this issue Dec 2, 2018 · 0 comments
Assignees
@corysabol
Labels
enhancement

Comments

@corysabol
Copy link
Contributor

Like the title say. It would be really cool to integrate the container hacking content into Samurai. Put's a bit ahead of the curve as container security continues to gather attention.

At first I'm thinking that we could have 3 target containers:

  • One to show how bind mounting the docker socket is a terrible idea
  • One to show how containers with too many kernel capabilities can be abused
  • The simple web target I built or we modify one of the dockerized targets to allow for a pivot through the docker socket post web app exploitation

I have been exploring Kubernetes and LXD lately as well. I don't have any of that stuff quite fleshed out yet though. But once I do it would be possible to add that in there as well.

I like what @mgillam suggested at one point. A sort of optional way to configure how Samurai builds. That way if somebody is only trying to show some web stuff, they just build the web stuff and not all the container stuff too, and vice versa.
@corysabol corysabol self-assigned this Dec 2, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@corysabol corysabol

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@corysabol