diff --git a/SUMMARY.md b/SUMMARY.md index c111c6d7e1..96b83ea453 100644 --- a/SUMMARY.md +++ b/SUMMARY.md @@ -59,7 +59,7 @@ * [Pod Escape Privileges](pentesting-cloud/kubernetes-security/abusing-roles-clusterroles-in-kubernetes/pod-escape-privileges.md) * [Kubernetes Roles Abuse Lab](pentesting-cloud/kubernetes-security/abusing-roles-clusterroles-in-kubernetes/kubernetes-roles-abuse-lab.md) * [Kubernetes Namespace Escalation](pentesting-cloud/kubernetes-security/kubernetes-namespace-escalation.md) - * [Kubernetes Namespace Escalation](pentesting-cloud/kubernetes-security/kubernetes-external-secrets-operator.md) + * [Kubernetes External Secret Operator](pentesting-cloud/kubernetes-security/kubernetes-external-secrets-operator.md) * [Kubernetes Pivoting to Clouds](pentesting-cloud/kubernetes-security/kubernetes-pivoting-to-clouds.md) * [Kubernetes Network Attacks](pentesting-cloud/kubernetes-security/kubernetes-network-attacks.md) * [Kubernetes Hardening](pentesting-cloud/kubernetes-security/kubernetes-hardening/README.md) @@ -430,6 +430,7 @@ * [OpenShift - Basic information](pentesting-cloud/openshift-pentesting/openshift-basic-information.md) * [Openshift - SCC](pentesting-cloud/openshift-pentesting/openshift-scc.md) * [OpenShift - Jenkins](pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md) + * [OpenShift - Jenkins Build Pod Override](pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md) * [OpenShift - Privilege Escalation](pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/README.md) * [OpenShift - Missing Service Account](pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-missing-service-account.md) * [OpenShift - Tekton](pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-tekton.md) diff --git a/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/README.md b/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/README.md index 8625300e4d..4ad34f3924 100644 --- a/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/README.md +++ b/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/README.md @@ -1,6 +1,6 @@ # Kubernetes - OPA Gatekeeper -**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-c-ab4b9a196/en) +**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-chapela-ab4b9a196) ## Definition diff --git a/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/kubernetes-opa-gatekeeper-bypass.md b/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/kubernetes-opa-gatekeeper-bypass.md index 0c692328bd..1b9b7fda3a 100644 --- a/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/kubernetes-opa-gatekeeper-bypass.md +++ b/pentesting-cloud/kubernetes-security/kubernetes-opa-gatekeeper/kubernetes-opa-gatekeeper-bypass.md @@ -1,6 +1,6 @@ # Kubernetes - OPA Gatekeeper bypass -**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-c-ab4b9a196/en) +**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-chapela-ab4b9a196) ## Abusing misconfiguration diff --git a/pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md b/pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md index 195782997a..b8f1ec33f8 100644 --- a/pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md +++ b/pentesting-cloud/openshift-pentesting/openshift-jenkins/README.md @@ -37,3 +37,9 @@ If you need to be stealthy, you can delete your triggered builds if you have eno 2. You have write access to the SCM and automated builds are configured via webhook You can just edit a build script (such as Jenkinsfile), commit and push (eventually create a PR if builds are only triggered on PR merges). Keep in mind that this path is very noisy and need elevated privileges to clean your tracks. + +## Jenkins Build Pod YAML override + +{% content-ref url="openshift-jenkins-build-overrides.md" %} +[openshift-jenkins-build-overrides.md](openshift-jenkins-build-overrides.md) +{% endcontent-ref %} diff --git a/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-scc-bypass.md b/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-scc-bypass.md index 1296420024..e89392fa90 100644 --- a/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-scc-bypass.md +++ b/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-scc-bypass.md @@ -1,6 +1,6 @@ # Openshift - SCC bypass -**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-c-ab4b9a196/en) +**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-chapela-ab4b9a196) ## Privileged Namespaces diff --git a/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-tekton.md b/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-tekton.md index 5d5d4ff531..34bf3a57a3 100644 --- a/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-tekton.md +++ b/pentesting-cloud/openshift-pentesting/openshift-privilege-escalation/openshift-tekton.md @@ -7,7 +7,7 @@ description: >- # OpenShift - Tekton -**The original author of this page is** [**Haroun**](www.linkedin.com/in/haroun-al-mounayar-571830211) +**The original author of this page is** [**Haroun**](https://www.linkedin.com/in/haroun-al-mounayar-571830211) ### What is tekton diff --git a/pentesting-cloud/openshift-pentesting/openshift-scc.md b/pentesting-cloud/openshift-pentesting/openshift-scc.md index d3684d23b7..5a93ada616 100644 --- a/pentesting-cloud/openshift-pentesting/openshift-scc.md +++ b/pentesting-cloud/openshift-pentesting/openshift-scc.md @@ -1,6 +1,6 @@ # Openshift - SCC -**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-c-ab4b9a196/en) +**The original author of this page is** [**Guillaume**](https://www.linkedin.com/in/guillaume-chapela-ab4b9a196) ## Definition