Add files via upload

2021-09-03 20:12:53 +05:30 · 2021-09-03 20:12:53 +05:30 · 6e2816be3e
parent 99d0461177
commit 6e2816be3e
3 changed files with 76 additions and 0 deletions
--- a/misconfiguration/kubernetes-exposed-metrics.yaml
+++ b/misconfiguration/kubernetes-exposed-metrics.yaml
@ -0,0 +1,24 @@
+id: kubernetes-exposed-metrics
+info:
+  name: Detect Kubernetes Exposed Metrics
+  author: pussycat0x
+  severity: low
+  description: Information Disclosure of Garbage Collection
+  tags: kubernetes,exposure, metrics
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}:8080/metrics"
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "namespace"
+          - "HELP"
+          - "TYPE"
+          - "kube"
+        condition: and
+      - type: status
+        status:
+          - 200
--- a/misconfiguration/node-exporter-metrics.yaml
+++ b/misconfiguration/node-exporter-metrics.yaml
@ -0,0 +1,27 @@
+id: node-exporter-metrics
+info:
+  name: Detect Node Exporter Metrics
+  author: pussycat0x
+  severity: low
+  description: Information Disclosure of Garbage Collection
+  tags: node,exposure, metrics
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}:9100/metrics"
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "go_goroutines"
+          - "HELP"
+          - "gauge"
+          - "node_cooling_device"
+          - "node_network"
+          - "boot"
+          - "TYPE go_goroutines gauge"
+        condition: and
+      - type: status
+        status:
+          - 200
--- a/misconfiguration/overview-kubernetes-resource-report.yaml
+++ b/misconfiguration/overview-kubernetes-resource-report.yaml
@ -0,0 +1,25 @@
+id: overview-kubernetes-resource-report
+info:
+  name: Detect Overview Kubernetes Resource Report
+  author: pussycat0x
+  severity: medium
+  description: Information Disclosure of Kubernetes Resource Report
+  tags: Kubernetes,exposure
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}:9100/metrics"
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "<title>Overview - Kubernetes Resource Report</title>"
+          - "<title>Overview - Kubernetes Resource Report</title>"
+          - "Pods"
+          - "Worker Nodes"
+          - "Applications"
+        condition: and
+      - type: status
+        status:
+          - 200