Embark on a comprehensive journey through Kubernetes security with this 38-minute conference talk by Andrew Martin from ControlPlane. Explore threat modeling techniques for Kubernetes clusters and learn how to both attack and defend them against various adversaries. Gain insights into historical and current CVEs, misconfigurations, and advanced attack methods. Discover how to protect containers, pods, supply chains, networks, storage, policies, and organizational assets. Evaluate the use of next-generation runtimes like gVisor, firecracker, and Kata Containers. Delve into workload identity concepts and advanced runtime hardening techniques. Analyze trust boundaries in multi-tenant systems to assess and mitigate compromise risks. Navigate the complexities of advanced Kubernetes security to enhance your cluster's defenses against potential threats.
A Treasure Map of Hacking and Defending Kubernetes
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
A Treasure Map of Hacking (and Defending) Kubernetes - Andrew Martin, ControlPlane
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Hacking the Cloud Native Renaissance - Lowering Risk of Kubernetes Adoption
-
Kubernetes Privilege Escalation Tactics - Understanding and Mitigating Vulnerabilities
-
Three Surprising Kubernetes Networking Features and How to Defend Against Them
-
Hacking and Defending Kubernetes Clusters - Live Demonstration
-
Attacking and Defending Kubernetes Clusters with KubeHound Attack Graph Model
-
Kubernetes Exposed - Seven Hidden Secrets That Will Give You Pause
