Attacking and Defending Kubernetes

Channel:

Coding Tech

Subscribers:

725,000

Published on November 24, 2019 5:30:00 PM ● Video Link: https://www.youtube.com/watch?v=0nZvBMmbsGs

Duration: 53:18

3,533 views

Many companies have deployed Kubernetes, but few infosec folks have experience attacking it. We aim to address that shortage, culminating in an audience-directed Choose Your Own Adventure, movie-themed demo against an intentionally-vulnerable cluster named Bust-a-Kube. You'll see how to attack Kubernetes clusters and learn what hardening techniques and freely available tools can break those attacks. We'll review the components of a Kubernetes cluster, then show how a threat actor can chain configuration vulnerabilities to pivot and escalate privilege, pilfer data and take over clusters. You will also gain exposure to a new open source Kubernetes attack tool called Peirates.

EVENT:

Def Con 27 - 2019

SPEAKER:

Jay Beale

PUBLICATION PERMISSIONS:

Original video was published with the Creative Commons Attribution license (reuse allowed)

ATTRIBUTION CREDITS:

Original video source: https://www.youtube.com/watch?v=2fmAuR3rnBo

Other Videos By Coding Tech

2019-11-28	Cypress.io – The State of the Art End to End Testing Tool
2019-11-27	Introduction To TensorFlow 2.0
2019-11-27	Machine Learning Magic For Your Web App with TensorFlowJS
2019-11-27	Optimizing Docker Builds for Python Applications
2019-11-26	Should You Use Kubernetes and Docker In Your Next Project?
2019-11-25	Build Anything with FoundationDB
2019-11-25	The Secrets of High Performing Technology Organizations
2019-11-24	Mind Reading with Intelligent & Adaptive UIs
2019-11-24	Gaining Control with the Web Animations API
2019-11-24	Why Is Haskell So Hard To Learn And How To Deal With It
2019-11-24	Attacking and Defending Kubernetes
2019-11-23	Docker For Novices
2019-11-22	Standing on the Shoulders of APIs
2019-11-22	Deep Learning with TensorFlow 2.0
2019-11-21	WebAssembly: Binary in Plain English
2019-11-21	Rust in the Browser for JavaScripters: New Frontiers, New Possibilities
2019-11-20	Attacking VoIP Configuration Interfaces (aka I'm On Your Phone, Listening)
2019-11-20	Goodbye Client Side JavaScript, Hello C# Blazor
2019-11-19	Using Data to Automate Knowledge Generation \|\| Ella Bor
2019-11-19	Swift's New Resolver: Can It Resolve Conflicts In My Relationship?
2019-11-18	NodeJS: Let It Crash!

Tags:

kubernetes

containers

hacking

web security

Channel	Latest
Warner Play	6 hours ago
羊田ヨウジ / Hitsujida Yoji	6 hours ago
Shiekrunner	6 hours ago
RAHUL AERI	6 hours ago
AKI	6 hours ago
Dekapuccino	7 hours ago
Manga Dub Anime TG TF	7 hours ago
Mr. CatMan	7 hours ago
Basemass	7 hours ago
くれいど / Kureido	7 hours ago
time 342	7 hours ago
Zelgraz	7 hours ago
YZ Games	7 hours ago
ELSADIK	7 hours ago
Calem MrNazreenn	7 hours ago
NateNoWay	7 hours ago
OldReaver	7 hours ago
OVER SHOW	7 hours ago
domisumReplay: Ornn	7 hours ago
一般人、日々の記録	7 hours ago
Million Fact	7 hours ago
STAR GAMERS	8 hours ago
radi harun	8 hours ago
ORAEMON	8 hours ago
KannazukiHaruto	8 hours ago