Skip to content

Commit

Permalink
Merge pull request #632 from kubescape/SUB-3901
Browse files Browse the repository at this point in the history
SUB-3901 - New Attack Path -2: External facing database without authe…
  • Loading branch information
kooomix authored Jul 22, 2024
2 parents e380f61 + b65e59d commit 5bd8622
Show file tree
Hide file tree
Showing 2 changed files with 28 additions and 1 deletion.
27 changes: 27 additions & 0 deletions attack-tracks/workload-unauthenticated-service.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
{
"apiVersion": "regolibrary.kubescape/v1alpha1",
"kind": "AttackTrack",
"metadata": {
"name": "workload-unauthenticated-service"
},
"spec": {
"version": "1.0",
"data": {
"name": "Initial Access",
"description": "An attacker can access the Kubernetes environment.",
"subSteps": [
{
"name": "Execution (Vulnerable Image)",
"description": "An attacker can execute malicious code by exploiting vulnerable images.",
"checksVulnerabilities": true,
"subSteps": [
{
"name": "Data Collection",
"description": "An attacker can gather data."
}
]
}
]
}
}
}
2 changes: 1 addition & 1 deletion controls/C-0274-unauthenticatedservice.json
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
],
"attackTracks": [
{
"attackTrack": "workload-external-track",
"attackTrack": "workload-unauthenticated-service",
"categories": [
"Data Collection"
]
Expand Down

0 comments on commit 5bd8622

Please sign in to comment.