Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Module to extract service account tokens of running pods in EKS #443

Merged
merged 9 commits into from
Aug 19, 2024
Merged

Module to extract service account tokens of running pods in EKS #443

merged 9 commits into from
Aug 19, 2024

Conversation

guragainroshan0
Copy link

@guragainroshan0 guragainroshan0 commented Jun 21, 2024
edited
Loading

Module to retrieve service account tokens of running pods in a EKS cluster. Credentials retrieved from SSRF could be role of a node. This could be exploited to extract service account tokens of pods in the cluster and exploit it further.
This module requests EKS authentication token for a node and uses it to get service account token of pods running in the cluster.

@guragainroshan0 guragainroshan0 changed the title Module to extract service account tokens of running pods in EKS [ WIP ] Module to extract service account tokens of running pods in EKS Jul 10, 2024
@DaveYesland
Copy link
Collaborator

Starting to take a look at this and test it. Thanks for the contribution!

I think something more specific for the module name might be better, maybe: eks__collect_tokens or eks__collect_service_tokens something to make it clear what it does at a glance.

@guragainroshan0
Copy link
Author

guragainroshan0 commented Aug 8, 2024
edited
Loading

Thanks for the review.

The module name has been modified to eks__collect_tokens.

chebuya
chebuya approved these changes Aug 19, 2024
View reviewed changes
Copy link
Contributor

@chebuya chebuya left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey @guragainroshan0, thanks for contributing! I have reviewed and tested the module, all is looking great so will be merging it soon

@chebuya chebuya merged commit 90ac189 into RhinoSecurityLabs:master Aug 19, 2024
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chebuya chebuya chebuya approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@guragainroshan0 @DaveYesland @chebuya