Skip to content

Commit

Permalink
Merge pull request #564 from kubescape/feature/update-rules
Browse files Browse the repository at this point in the history 
Commenting 2 rules and update unittest
  • Loading branch information
@amitschendel
amitschendel authored Dec 11, 2024
2 parents 7293bd2 + 7cf49fd commit 64df43e
Show file tree
Hide file tree
Showing 3 changed files with 4 additions and 8 deletions.
4 changes: 2 additions & 2 deletions charts/kubescape-operator/templates/node-agent/default-rule-binding-namespaced.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@ spec:
- ruleName: "Exec from malicious source"
- ruleName: "Kernel Module Load"
- ruleName: "Exec Binary Not In Base Image"
- ruleName: "Malicious SSH Connection"
# - ruleName: "Malicious SSH Connection"
- ruleName: "Fileless Execution"
- ruleName: "XMR Crypto Mining Detection"
- ruleName: "Exec from mount"
Expand All @@ -34,6 +34,6 @@ spec:
- ruleName: "Hardlink Created Over Sensitive File"
- ruleName: "Exec to pod"
- ruleName: "Port forward"
- ruleName: "Unexpected Egress Network Traffic"
# - ruleName: "Unexpected Egress Network Traffic"
- ruleName: "Malicious Ptrace Usage"
{{- end }}
4 changes: 2 additions & 2 deletions charts/kubescape-operator/templates/node-agent/default-rule-binding.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ spec:
- ruleName: "Exec from malicious source"
- ruleName: "Kernel Module Load"
- ruleName: "Exec Binary Not In Base Image"
- ruleName: "Malicious SSH Connection"
# - ruleName: "Malicious SSH Connection"
- ruleName: "Fileless Execution"
- ruleName: "XMR Crypto Mining Detection"
- ruleName: "Exec from mount"
Expand All @@ -52,6 +52,6 @@ spec:
- ruleName: "Hardlink Created Over Sensitive File"
- ruleName: "Exec to pod"
- ruleName: "Port forward"
- ruleName: "Unexpected Egress Network Traffic"
# - ruleName: "Unexpected Egress Network Traffic"
- ruleName: "Malicious Ptrace Usage"
{{- end }}
4 changes: 0 additions & 4 deletions charts/kubescape-operator/tests/__snapshot__/snapshot_test.yaml.snap
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2802,7 +2802,6 @@ all capabilities:
- ruleName: Exec from malicious source
- ruleName: Kernel Module Load
- ruleName: Exec Binary Not In Base Image
- ruleName: Malicious SSH Connection
- ruleName: Fileless Execution
- ruleName: XMR Crypto Mining Detection
- ruleName: Exec from mount
Expand All @@ -2815,7 +2814,6 @@ all capabilities:
- ruleName: Hardlink Created Over Sensitive File
- ruleName: Exec to pod
- ruleName: Port forward
- ruleName: Unexpected Egress Network Traffic
- ruleName: Malicious Ptrace Usage
51: |
apiVersion: networking.k8s.io/v1
Expand Down Expand Up @@ -8252,7 +8250,6 @@ default capabilities:
- ruleName: Exec from malicious source
- ruleName: Kernel Module Load
- ruleName: Exec Binary Not In Base Image
- ruleName: Malicious SSH Connection
- ruleName: Fileless Execution
- ruleName: XMR Crypto Mining Detection
- ruleName: Exec from mount
Expand All @@ -8265,7 +8262,6 @@ default capabilities:
- ruleName: Hardlink Created Over Sensitive File
- ruleName: Exec to pod
- ruleName: Port forward
- ruleName: Unexpected Egress Network Traffic
- ruleName: Malicious Ptrace Usage
41: |
apiVersion: networking.k8s.io/v1
Expand Down

0 comments on commit 64df43e

Please sign in to comment.