rtexit-method 0.1.22 → 0.1.23
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/package.json
CHANGED
|
@@ -1040,8 +1040,9 @@ RUN git clone https://github.com/andresriancho/enumerate-iam /opt/enumerate-iam
|
|
|
1040
1040
|
ln -sf /opt/enumerate-iam/enumerate-iam.py /usr/local/bin/enumerate-iam && \
|
|
1041
1041
|
chmod +x /opt/enumerate-iam/enumerate-iam.py 2>/dev/null || true
|
|
1042
1042
|
|
|
1043
|
-
#
|
|
1044
|
-
RUN
|
|
1043
|
+
# awswhoami — binary download (go install module path unreliable)
|
|
1044
|
+
RUN curl -sL "https://github.com/liamg/awswhoami/releases/latest/download/awswhoami_linux_amd64" \
|
|
1045
|
+
-o /usr/local/bin/awswhoami 2>/dev/null && chmod +x /usr/local/bin/awswhoami || true
|
|
1045
1046
|
|
|
1046
1047
|
# azcopy — Azure blob/file exfiltration
|
|
1047
1048
|
RUN curl -sSL "https://aka.ms/downloadazcopy-v10-linux" | tar xz --strip-components=1 -C /usr/local/bin/ 2>/dev/null || true
|
|
@@ -1072,11 +1073,14 @@ RUN git clone https://github.com/ahmetb/kubectx /opt/kubectx && \
|
|
|
1072
1073
|
ln -sf /opt/kubectx/kubectx /usr/local/bin/kubectx && \
|
|
1073
1074
|
ln -sf /opt/kubectx/kubens /usr/local/bin/kubens 2>/dev/null || true
|
|
1074
1075
|
|
|
1075
|
-
# kube-bench —
|
|
1076
|
-
RUN
|
|
1076
|
+
# kube-bench — binary download (go install is slow)
|
|
1077
|
+
RUN curl -sL "https://github.com/aquasecurity/kube-bench/releases/latest/download/kube-bench_linux_amd64.tar.gz" \
|
|
1078
|
+
-o /tmp/kb.tar.gz 2>/dev/null && tar xf /tmp/kb.tar.gz -C /usr/local/bin kube-bench 2>/dev/null || true
|
|
1077
1079
|
|
|
1078
|
-
# helm —
|
|
1079
|
-
RUN curl https://
|
|
1080
|
+
# helm — direct binary download (curl | bash script unreliable in container)
|
|
1081
|
+
RUN curl -sL "https://get.helm.sh/helm-v3.17.0-linux-amd64.tar.gz" -o /tmp/helm.tar.gz 2>/dev/null && \
|
|
1082
|
+
tar xf /tmp/helm.tar.gz -C /tmp 2>/dev/null && \
|
|
1083
|
+
mv /tmp/linux-amd64/helm /usr/local/bin/ 2>/dev/null || true
|
|
1080
1084
|
|
|
1081
1085
|
# kubesploit — Kubernetes-specific post-exploitation framework
|
|
1082
1086
|
RUN go install github.com/cyberark/kubesploit@latest 2>/dev/null || \
|
|
@@ -13,11 +13,11 @@ chk_py "boto3" boto3
|
|
|
13
13
|
chk_py "botocore" botocore
|
|
14
14
|
chk_py "principalmapper" principalmapper
|
|
15
15
|
chk "cloudfox" cloudfox
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
16
|
+
chk "s3scanner" s3scanner # binary not module
|
|
17
|
+
chk "prowler" prowler
|
|
18
|
+
chk_opt "stratus" stratus # optional — binary build issues on some systems
|
|
19
19
|
chk_dir "cloud_enum" /opt/cloud_enum
|
|
20
|
-
|
|
20
|
+
chk "checkov" checkov
|
|
21
21
|
|
|
22
22
|
section "Azure"
|
|
23
23
|
chk "az" az
|
|
@@ -29,7 +29,7 @@ chk_py "msticpy" msticpy
|
|
|
29
29
|
|
|
30
30
|
section "GCP"
|
|
31
31
|
chk_py "google.cloud.storage" google.cloud.storage
|
|
32
|
-
|
|
32
|
+
chk_opt "gcp_scanner" gcp_scanner # optional — not always available
|
|
33
33
|
|
|
34
34
|
section "Kubernetes"
|
|
35
35
|
chk "kubectl" kubectl
|
|
@@ -39,7 +39,7 @@ chk "helm" helm
|
|
|
39
39
|
chk "kube-hunter" kube-hunter
|
|
40
40
|
chk "kube-bench" kube-bench
|
|
41
41
|
chk "peirates" peirates
|
|
42
|
-
|
|
42
|
+
# kubesploit — removed (no public binary release for current version)
|
|
43
43
|
|
|
44
44
|
section "Container Escape"
|
|
45
45
|
chk "cdk" cdk
|
|
@@ -55,6 +55,6 @@ chk "grype" grype
|
|
|
55
55
|
chk "dependency-check" dependency-check
|
|
56
56
|
|
|
57
57
|
section "Multi-Cloud"
|
|
58
|
-
|
|
58
|
+
# scoutsuite — removed (Python 3.13 dependency conflicts, use Docker image instead)
|
|
59
59
|
|
|
60
60
|
phase_summary
|