security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

more tweaks

Browse Source
This commit is contained in:
Travis Lowe
2021-05-19 13:58:33 -05:00
parent e6c4db95ff
commit 5aad980a94
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
atomics/T1610/T1610.yaml
+1 -1
View File
@@ -5,7 +5,7 @@ display_name: "Deploy Container"
atomic_tests:
- name: Deploy container using nsenter container escape
description: |
In this escape `kubectl` is used to launched a new pod, with a container that has the host pids mapped into the container (`hostPID:true`). It uses the container image alpine linux. It runs with privilege on the host (`privileged:true`). When the container is launched the command `nsenter --mount=/proc/1/ns/mnt -- /bin/bash` is ran. Since the host processes have been mapped into the container, the container enters the host namespace, escaping the container.
In this escape `kubectl` is used to launch a new pod, with a container that has the host pids mapped into the container (`hostPID:true`). It uses the alpine linux container image. It runs with privilege on the host (`privileged:true`). When the container is launched the command `nsenter --mount=/proc/1/ns/mnt -- /bin/bash` is ran. Since the host processes have been mapped into the container, the container enters the host namespace, escaping the container.
Additional Details:
- https://twitter.com/mauilion/status/1129468485480751104
atomics/T1611/T1611.yaml
+1 -1
View File
@@ -5,7 +5,7 @@ display_name: "Escape to Host"
atomic_tests:
- name: Deploy container using nsenter container escape
description: |
In this escape `kubectl` is used to launched a new pod, with a container that has the host pids mapped into the container (`hostPID:true`). It uses the container image alpine linux. It runs with privilege on the host (`privileged:true`). When the container is launched the command `nsenter --mount=/proc/1/ns/mnt -- /bin/bash` is ran. Since the host processes have been mapped into the container, the container enters the host namespace, escaping the container.
In this escape `kubectl` is used to launch a new pod, with a container that has the host pids mapped into the container (`hostPID:true`). It uses the alpine linux container image. It runs with privilege on the host (`privileged:true`). When the container is launched the command `nsenter --mount=/proc/1/ns/mnt -- /bin/bash` is ran. Since the host processes have been mapped into the container, the container enters the host namespace, escaping the container.
Additional Details:
- https://twitter.com/mauilion/status/1129468485480751104