Skip to content

okpalindrome/dkube

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

dkube

Crawl the static information from a specific namespace in Kubernetes.

  • Get all unique Docker images.
  • List all actively used resources.
  • Crawl the yaml from each active resources.
  • Store all the above information in a directory structure.
-- namespace
      docker_images.txt
      active_resources.txt
   -- resource 1
            manifest_resource_name.yaml
   -- resource 2
            manifest_resource_name.yaml
  • This acts as a snapshot of the environment.
  • You can feed the results to perform SAST scan using Kube-linter, kube-score, checkov, etc.
  • Also, using docker-multi-scan you can scan the images using grype, trivy and docker-scout at once.

Installation

go install -v github.com/okpalindrome/dkube@latest

Usage

$ dkube --help
Usage of dkube:
  -destination string
        Destination directory/folder to save.
  -namespace string
        Provide namespace or it can take from current context's default namespace set.

Note

Used kubectl instead of the client-go API because, as a pentester, it is unlikely that I will consistently have access to the same version.

About

Crawl active resources from Kubernetes

Topics

kubernetes k8s-namespaces

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages