Completed
Diff
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Deep Dive into a Kubernetes CVE
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 Who am I
- 3 What was Kubernetes 100105
- 4 It was big news
- 5 Severity Scores
- 6 What was it
- 7 What it allowed
- 8 The bad news
- 9 How did it work
- 10 Moving parts in Kubernetes
- 11 Kubernetes Control Plane
- 12 API Server
- 13 Reverse Proxy Routing
- 14 Attack vectors
- 15 Risks
- 16 Twistlock Demo
- 17 Exploits
- 18 Diff
- 19 Mitigations
- 20 What can we learn
- 21 Defense in Depth
- 22 Watch your dependencies
- 23 Keep up to date
- 24 Kubernetes postmortem
- 25 Communicate better
- 26 Resources
- 27 Is it still affected
- 28 If you are an admin
- 29 The first time
- 30 Why did it take until December
- 31 What is a backend server
- 32 TCP Connection Reuse
- 33 The Fallout
- 34 Whats Changed
- 35 Wrap Up