Adding/modifying content from Troopers / PTS (#218)

* init * typo
DataDog · Jul 9, 2024 · 541f8c1 · 541f8c1
1 parent 99de195
commit 541f8c1
Show file tree

Hide file tree

Showing 12 changed files with 74,362 additions and 17 deletions.
diff --git a/deployments/kubehound/notebook/Dockerfile b/deployments/kubehound/notebook/Dockerfile
@@ -68,10 +68,8 @@ RUN mkdir -p "${WORKING_DIR}" && \
     rm -rf /root/.npm/_cacache && \
     rm -rf /usr/share
 
-ADD "KubeHound.ipynb" "${NOTEBOOK_DIR}/KubeHound.ipynb"
-ADD "RedTeam.ipynb" "${NOTEBOOK_DIR}/RedTeam.ipynb"
-ADD "BlueTeam.ipynb" "${NOTEBOOK_DIR}/BlueTeam.ipynb"
-ADD "SecurityPosture.ipynb" "${NOTEBOOK_DIR}/SecurityPosture.ipynb"
+ADD *.ipynb ${NOTEBOOK_DIR}/
+
 ADD ./service.sh /usr/bin/service.sh
 RUN chmod +x /usr/bin/service.sh
 

diff --git a/.../kubehound/notebook/InsomniHackDemo.ipynb → ...kubehound/notebook/KindCluster_Demo.ipynb b/.../kubehound/notebook/InsomniHackDemo.ipynb → ...kubehound/notebook/KindCluster_Demo.ipynb
@@ -5,7 +5,7 @@
    "cell_type": "markdown",
    "metadata": {},
    "source": [
-    "# Playbook for InsomniHack24k on our demo kind cluster\n",
+    "# Playbook to showcase KubeHound against our demo kind cluster\n",
     "\n",
     "This notebook (and the ones next to it in this folder) will be in sync between the docker container and the hosts.\n",
     "You can use this to experiment and save your queries in git, if needed.\n",

diff --git a/...ts/kubehound/notebook/Kubehound_101.ipynb → ...kubehound/notebook/KubehoundDSL_101.ipynb b/...ts/kubehound/notebook/Kubehound_101.ipynb → ...kubehound/notebook/KubehoundDSL_101.ipynb
@@ -4,9 +4,9 @@
    "cell_type": "markdown",
    "metadata": {},
    "source": [
-    "# Kubehound 101 - Gremlin and DSL\n",
+    "# KubeHound 101 - Gremlin and DSL\n",
     "\n",
-    "A step by step example of basic gremlin query and Kubehound DSL"
+    "A step by step example of basic Gremlin and KubeHound DSL queries."
    ]
   },
   {
@@ -279,7 +279,7 @@
    "source": [
     "## Constructing requests\n",
     "\n",
-    "Every vertices has a label associated which describes the type of the k8s resources (can be accessed through Kubehound DSL).\n",
+    "Every vertices has a label associated which describes the type of the k8s resources (can be accessed through KubeHound DSL).\n",
     "\n",
     "Raw gremlin query to select all pod in a k8s cluster."
    ]
@@ -316,7 +316,7 @@
    "cell_type": "markdown",
    "metadata": {},
    "source": [
-    "Equivalent in Kubehound DSL:"
+    "Equivalent in KubeHound DSL:"
    ]
   },
   {
@@ -735,7 +735,7 @@
    "source": [
     "## Gremlin introduction\n",
     "\n",
-    "Basic gremlin function to play around kubehound resources. All gremlin function can be access from KubeHound DSL.\n",
+    "Basic gremlin function to play around KubeHound resources. All gremlin function can be access from KubeHound DSL.\n",
     "\n",
     "* `properties()`: get all specified properties for the current element\n",
     "* `values()`: get all specified property values for the current element\n",
@@ -1007,7 +1007,7 @@
    "cell_type": "markdown",
    "metadata": {},
    "source": [
-    "## Kubehound RBAC\n",
+    "## KubeHound RBAC\n",
     "\n",
     "A permission set is the combination of role and role binding. The reason is that RoleBinding can “downgrade” the scope of a cluster role."
    ]

diff --git a/docs/files/PassTheSalt24/Kubehound-Workshop-PassTheSalt_2024.pdf b/docs/files/PassTheSalt24/Kubehound-Workshop-PassTheSalt_2024.pdf