[root@worker1 ~]# docker run -it --rm --network host kube-hunter:0.6.8 Choose one of the options below: 1. Remote scanning (scans one or more specific IPs or DNS names) 2. Interface scanning (scans subnets on all local network interfaces) 3. IP range scanning (scans a given IP range) Your choice: 1 Remotes (separated by a ','): 192.168.30.12 2023-01-17 10:02:52,143 INFO kube_hunter.modules.report.collector Started hunting 2023-01-17 10:02:52,143 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2023-01-17 10:02:52,169 INFO kube_hunter.modules.report.collector Found open service "Etcd" at 192.168.30.12:2379 2023-01-17 10:02:52,173 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 192.168.30.12:10250 2023-01-17 10:02:52,257 INFO kube_hunter.modules.report.collector Found open service "Unrecognized K8s API" at 192.168.30.12:6443 Nodes +-------------+---------------+ | TYPE | LOCATION | +-------------+---------------+ | Node/Master | 192.168.30.12 | +-------------+---------------+ Detected Services +----------------------+---------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +----------------------+---------------------+----------------------+ | Unrecognized K8s API | 192.168.30.12:6443 | A Kubernetes API | | | | service | +----------------------+---------------------+----------------------+ | Kubelet API | 192.168.30.12:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +----------------------+---------------------+----------------------+ | Etcd | 192.168.30.12:2379 | Etcd is a DB that | | | | stores cluster's | | | | data, it contains | | | | configuration and | | | | current | | | | state | | | | information, and | | | | might contain | | | | secrets | +----------------------+---------------------+----------------------+ No vulnerabilities were found