• Stars
    star
    1,155
  • Rank 40,393 (Top 0.8 %)
  • Language
    Go
  • License
    GNU General Publi...
  • Created over 5 years ago
  • Updated 7 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Peirates - Kubernetes Penetration Testing tool

Peirates

Release gosec

Logo

What is Peirates?

Peirates, a Kubernetes penetration tool, enables an attacker to escalate privilege and pivot through a Kubernetes cluster. It automates known techniques to steal and collect service account tokens, secrets, obtain further code execution, and gain control of the cluster.

Where do I run Peirates?

You run Peirates from a container running on Kubernetes or from a Kubernetes node, outside the container.

Does Peirates attack a Kubernetes cluster?

Yes, it absolutely does. Talk to your lawyer and the cluster owners before using this tool in a Kubernetes cluster.

Who creates Peirates?

InGuardians' CTO Jay Beale first conceived of Peirates and put together a group of InGuardians developers to create it with him, including Faith Alderson, Adam Crompton and Dave Mayer. Faith convinced us to all learn Golang, so she could implement the tool's use of the kubectl library from the Kubernetes project. Adam persuaded the group to use a highly-interactive user interface. Dave brought contagious enthusiasm. Together, these four developers implemented attacks and began releasing this tool that we use on our penetration tests.

Other contributors have helped as well - see GitHub to see more, but please also review credits.md.

Do you welcome contributions?

Yes, we absolutely do. Submit a pull request and/or reach out to [email protected].

What license is this released under?

Peirates is released under the GPLv2 license.

Modules

Building and Running

If you just want the peirates binary to start attacking things, grab the latest release from the releases page.

However, if you want to build from source, read on!

Get peirates

go get -v "github.com/inguardians/peirates"

Get libary sources if you haven't already (Warning: this will take almost a gig of space because it needs the whole kubernetes repository)

go get -v "k8s.io/kubectl/pkg/cmd" "github.com/aws/aws-sdk-go"

Build the executable

cd $GOPATH/github.com/inguardians/peirates/scripts
./build.sh

This will generate an executable file named peirates in the same directory.

More Repositories

1

zigbee_tools

A few ZigBee Tools to compliment KillerBee
Python
52
star
2

Invoke-Clipboard

All of Your Copy/Paste Belong to Us: Stealing the clipboard and using it for C2 communications
PowerShell
51
star
3

kismapping

Kismapping is a WiFi heatmapping tool which consumes Kismet output and produces a heatmap. It also serves a google maps web page with the heatmap overlaid on top.
Haskell
48
star
4

VaporTrail

Written by InGuardians' Faith Alderson and Larry Pesce, VaporTrail is a tool for data transmission over FM, using RPITX to transmit from an out-of-the-box Raspberry Pi, and an RTL-SDR to receive. Twitter handles: @unknownloner, @haxorthematrix, @inguardians
Haskell
48
star
5

ServifyThis

35
star
6

toms_honeypot

Tom's Honey Pot as seen in Applied Network Security Monitoring.
Python
25
star
7

ivanti-VPN-issues-2024-research

Invanti VPN Vulnerabilities for Jan - Feb 2024 - Links to Keep it all Organized
15
star
8

optiguard

Initial commit
Python
14
star
9

WaiLin

An affordable way for average humans to detect GPS time and location manipulation
Python
9
star
10

censys_io

Python
7
star
11

password_tools

A few bits and pieces to make password cracking more efficient
Python
7
star
12

VistaRFmon

5
star
13

wlsample

4
star
14

rpi-kt0803k

Configure the KT0803 and KT0803K FM radios over i2c on the Raspberry Pi.
C
4
star
15

IoTA

The Internet of Things Attack (IoTA) Methodology
3
star
16

WeaponizedFlash

ActionScript
3
star
17

process_nmap

Process Nmap Scan Tools
Python
3
star
18

InG_Sparring_Boards

InGuardians Sparring Boards - a collection of printed circuit boards (PCB) to help users learn about embedded devices and the tools and techniques used during development and assessment.
C
3
star