Andrew Martin

Hacking Kubernetes: Live Demo Marathon

It starts with one malicious NPM package and ends with cloud account takeover. This live demo shows the entire attack path.

Hacking Kubernetes: Live Demo Marathon
#1about 8 minutes

Understanding the Kubernetes threat landscape and adversaries

Threat modeling helps build appropriate security controls by identifying potential adversaries, from script kiddies to organized crime.

#2about 3 minutes

Demonstrating a supply chain attack using NPM hooks

A malicious NPM package can use a preinstall hook to execute arbitrary code and exfiltrate sensitive files like SSH or cloud keys from a developer's machine.

#3about 12 minutes

Gaining a reverse shell through pod misconfigurations

An attacker can gain a reverse shell and break out of a container by exploiting pod misconfigurations like privileged mode and sharing the host PID namespace.

#4about 9 minutes

Executing a container breakout using the Dirty Pipe vulnerability

The Dirty Pipe vulnerability allows an unprivileged user to overwrite root-owned files, enabling a container breakout by patching the runc binary in memory.

#5about 7 minutes

Pivoting post-breakout to steal secrets from other pods

After gaining root on a node, an attacker can pivot by enumerating the host filesystem to find and steal secrets mounted into other pods running on the same node.

#6about 5 minutes

Using canary tokens as a last line of defense

Embedding canary tokens, which are credentials with no permissions, provides a tripwire that triggers an intrusion detection alert when an attacker attempts to use them.

Related jobs
Jobs that call for the skills explored in this talk.

test

Milly

Milly
Vienna, Austria

Intermediate
.NET
TypeScript
+1

test

Milly

Milly
Vienna, Austria

Intermediate
.NET
TypeScript
+1

job ad

Saby Company

Saby Company
Delebio, Italy

Remote
Intermediate
Node.js

Matching moments

Deconstructing a typical Kubernetes cluster attack chain
02:06 MIN

Deconstructing a typical Kubernetes cluster attack chain

Kubernetes Security - Challenge and Opportunity

Identifying common Kubernetes security vulnerabilities
04:28 MIN

Identifying common Kubernetes security vulnerabilities

Kubernetes Security - Challenge and Opportunity

The prevalence and impact of Kubernetes security incidents
01:27 MIN

The prevalence and impact of Kubernetes security incidents

Kubernetes Security Best Practices

Security best practices for containers and Kubernetes
06:25 MIN

Security best practices for containers and Kubernetes

Microservices: how to get started with Spring Boot and Kubernetes

Q&A on managed Kubernetes security in the cloud
02:52 MIN

Q&A on managed Kubernetes security in the cloud

Kubernetes Security - Challenge and Opportunity

Key takeaways for hardening Kubernetes clusters
02:16 MIN

Key takeaways for hardening Kubernetes clusters

Kubernetes Security Best Practices

Tools and techniques for Kubernetes development
03:01 MIN

Tools and techniques for Kubernetes development

How I saved 200K/yr in direct costs writing 0 code lines in K8s

Understanding common intruder attack vectors
05:05 MIN

Understanding common intruder attack vectors

Securing Your Web Application Pipeline From Intruders

Featured Partners

Related Videos

See all videos
Kubernetes Security - Challenge and Opportunity42:45

Kubernetes Security - Challenge and Opportunity

Marc Nimmerrichter

Kubernetes Security Best Practices23:08

Kubernetes Security Best Practices

Rico Komenda

Turning Container security up to 11 with Capabilities28:47

Turning Container security up to 11 with Capabilities

Mathias Tausig

Enhancing Workload Security in Kubernetes44:00

Enhancing Workload Security in Kubernetes

Dimitrij Klesev & Andreas Zeissner

Supply Chain Security and the Real World: Lessons From Incidents24:47

Supply Chain Security and the Real World: Lessons From Incidents

Adrian Mouat

Stranger Danger: Your Java Attack Surface Just Got Bigger1:58:59

Stranger Danger: Your Java Attack Surface Just Got Bigger

Vandana Verma Sehgal

Hack-Proof The Node.js runtime: The Mechanics and Defense of Path Traversal Attacks27:10

Hack-Proof The Node.js runtime: The Mechanics and Defense of Path Traversal Attacks

Sonya Moisset

Walking into the era of Supply Chain Risks37:36

Walking into the era of Supply Chain Risks

Vandana Verma

Related Articles

View all articles
Learning Kubernetes made easy with KubeCampus
Learning to use Kubernetes? KubeCampus by Kasten offers free educational content for all skill levels to get you started!Kubernetes is an open-source system for deploying, scaling and managing containerized applications. It allows you to deploy your ...
Learning Kubernetes made easy with KubeCampus
CH
Chris Heilmann
Dev Digest 138 - Are you secure about this?
Hello there! This is the 2nd "out of the can" edition of 3 as I am on vacation in Greece eating lovely things on the beach. So, fewer news, but lots of great resources. Many around the topic of security. Enjoy! News and ArticlesGoogle Pixel phones t...
Dev Digest 138 - Are you secure about this?
CH
Chris Heilmann
Dev Digest 126 - * yells at cloud
Hello there, during the WeAreDevelopers World Congress last week many people got stranded on their way home because of the CrowdStrike debacle. But all worked out and we will be back 2025! Tickets are already available and you can try your luck at th...
Dev Digest 126 - * yells at cloud
CH
Chris Heilmann
All the videos of Halfstack London 2024!
Last month was Halfstack London, a conference about the web, JavaScript and half a dozen other things. We were there to deliver a talk, but also to record all the sessions and we're happy to share them with you. It took a bit as we had to wait for th...
All the videos of Halfstack London 2024!

From learning to earning

Jobs that call for the skills explored in this talk.