Explore three new methods for escaping privileged runc containers in this 43-minute conference talk from HITB2021SIN. Delve into the world of cloud security and container escape techniques with Li Qiang, a senior security engineer at Ant Group. Learn about the latest exploits that take advantage of the shared kernel between traditional containers and hosts. Gain insights into topics such as privileged camp, sensitive amount, user mode helper, and user mode health. Discover the EPPF architecture, its use cases, and core concepts. Examine defense strategies, including EPF and secure containers. Perfect for security professionals and researchers interested in cutting-edge container security challenges and solutions.
Overview
Syllabus
Introduction
Agenda
Container
Privileged Camp
Sensitive Amount
User Mode Helper
Container Escape
User Mode Health
Information Misc Example
Information Internals
Misc Format
EPPF
EPPF Use Cases
EPPF Architecture
Core Concepts
Demo
DEFENSE
EPF
Secure Container
Summary
Taught by
Hack In The Box Security Conference
