Explore the security vulnerabilities in popular Kubernetes platforms through this Black Hat conference talk. Discover how attackers can exploit powerful system pods to escalate privileges and potentially take over entire clusters. Learn about new privilege escalation techniques demonstrated on managed Kubernetes services and common open-source add-ons. Gain insights into tools for identifying vulnerable pods and privilege escalation paths, as well as mitigations to detect and prevent such attacks. Join Yuval Avrahami and Shaul Ben Hai as they delve into the critical issue of container escapes potentially leading to cluster admin access, offering valuable knowledge for securing Kubernetes environments.
Kubernetes Privilege Escalation - Container Escape Equals Cluster Admin
Overview
Syllabus
Kubernetes Privilege Escalation: Container Escape == Cluster Admin?
Taught by
Black Hat
Related Courses
-
Privilege Escalation with SharpUp
-
Trampoline Pods: Node to Admin Privilege Escalation in Popular Kubernetes Platforms
-
Implementing Container Privilege Escalation Detection Using eBPF for Cloud Native Security
-
CertifiedDCOM - The Privilege Escalation Journey to Domain Admin with DCOM
-
K8s Post-Exploitation: Privilege Escalation, Sidecar Container Injection, and Runtime Security
-
Kubernetes Privilege Escalation Tactics - Understanding and Mitigating Vulnerabilities
