Prisoner Number 6

Explore the security implications of privileged Linux containers in this 46-minute conference talk from the Hack In The Box Security Conference. Delve into the world of container security, where millions of Linux containers are deployed daily, some with elevated privileges. Learn about the various ways privileged containers can be created, including the use of the --privileged flag and potential misconfigurations. Discover how these privileged containers can serve as entry points into an organization's network. Witness practical demonstrations of exploiting privileged containers using the Play-with-Docker platform, including techniques such as loading Linux kernel modules and manipulating host files through exposed devices. Gain insights from Nimrod Stoler, a cyber security researcher at CyberArk Labs, as he shares his expertise in network defense, DevOps analysis, and Linux container security.