TryHackMe Advent of Cyber 2024 . Day 22 . Kubernetes DFIR . Walkthrough
Tags
Common Information
Type | Value |
---|---|
UUID | 443b6808-44bd-4405-9ccd-699fb4a2d4ef |
Fingerprint | eb9d9c1ef238787 |
Analysis status | DONE |
Considered CTI value | -2 |
Text language | |
Published | Dec. 22, 2024, 8:14 p.m. |
Added to db | Dec. 22, 2024, 9:30 p.m. |
Last updated | Dec. 22, 2024, 11:28 p.m. |
Headline | TryHackMe Advent of Cyber 2024 . Day 22 . Kubernetes DFIR . Walkthrough |
Title | TryHackMe Advent of Cyber 2024 . Day 22 . Kubernetes DFIR . Walkthrough |
Detected Hints/Tags/Attributes | 66/2/21 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 17 | entrypoint.sh |
|
Details | Domain | 27 | gcr.io |
|
Details | Domain | 3 | instance.id |
|
Details | Domain | 1 | rolebindings.rbac.authorization.k8s.io |
|
Details | Domain | 1 | roles.rbac.authorization.k8s.io |
|
Details | File | 100 | access.log |
|
Details | File | 41 | style.css |
|
Details | File | 82 | favicon.ico |
|
Details | File | 4 | shelly.php |
|
Details | File | 1 | pod_apache2_access.log |
|
Details | File | 1 | docker-registry-logs.log |
|
Details | File | 1 | rolebindings.rb |
|
Details | File | 1 | roles.rb |
|
Details | File | 20 | audit.log |
|
Details | File | 21 | db.php |
|
Details | IPv4 | 26 | 172.17.0.1 |
|
Details | IPv4 | 1 | 10.10.130.253 |
|
Details | IPv4 | 1 | 192.168.49.1 |
|
Details | IPv4 | 1 | 10.244.120.126 |
|
Details | IPv4 | 5 | 10.10.123.224 |
|
Details | Url | 1 | http://docker-registry.nicetown.loc:5000":{"username":"mr.nice","password":"mr.n4ughty |