ajutamangdev
commented
1 month ago Update:
I found out the lab environment guides as well. I followed all the instruction too. Here is the ref: https://github.com/rapid7/metasploit-framework/blob/master/test/kubernetes/Makefile
I see its not generating the token for full access.
# service-token: ##@tokens Create a Kubernetes service token for the default service account
echo $$(kubectl get secret -n default $$(kubectl -n default get serviceaccount default -o jsonpath="{.secrets[0].name}") -o jsonpath="{.data.token}" | base64 -d)This case is for admin-token as well when we use make admin-token
I also figure out that Service account tokens are no longer able to generate token from 1.24 k8 version. We have to create manually. https://github.com/kubernetes/kubernetes/pull/108309 cc @adfoster-r7
adfoster-r7
github-actions[bot]
Hi there, I am trying to experiment enumeration of my homelab kind kubernetes cluster just for learning on how we can enumerate via msfconsole and kuberentes auxiliary module. I followed the instructions from https://docs.metasploit.com/docs/pentesting/metasploit-guide-kubernetes.html.
I am not able to verify my cluster configuration properly at msfconsole. May I know are there any options we can check our validation of our configuration like RHOST, RPORT, TOKEN.
Also has anyone tried using msfconsole for k8 ?