Kubernetes
Learning Resources and Tools
InGuardians has served as members of the Kubernetes project Security Audit Working Group and includes a Kubernetes project contributor. The team has also developed Open Source projects for Kubernetes, including Peirates, a Kubernetes penetration testing tool, and Bustakube, an intentionally-vulnerable Kubernetes cluster built as a teaching tool.
LEARNING RESOURCES
Upcoming workshops:
Free Workshop: Attacking and Defending Kubernetes, Hands-On
Get a hands-on introduction to attacking and defending Kubernetes (k8s)! We’ll first talk about Kubernetes and then you’ll do a step-by-step hands-on exercise. Remotely controlling a Kali Linux system, you’ll attack a capture-the-flag scenario in a Kubernetes cluster. Once you’ve busted your way to cluster admin, you’ll use your access to harden the cluster and block your attack. Come get some direct experience with Kubernetes security!
This workshop doesn’t require you to have any experience with containers or Kubernetes. It is accessible to anyone comfortable with a Linux command line.
Upcoming Dates:
TBA
Free Workshop: Kubernetes for Newbies, Hands-On
Are you interested in learning about Kubernetes, but have never touched a cluster? Come learn and get your hands dirty with a step-by-step exercise. We’ll first introduce what Kubernetes does and how to use it, then give you a cluster to try out what you’ve learned. Come check “learn about Kubernetes” off your someday-soon list!
This workshop doesn’t require you to have any experience with containers or Kubernetes. It is accessible to anyone comfortable with a Linux command line.
Upcoming dates:
TBA
Tools
Bust – A – Kube
Bust -A -Kube is an intentionally-vulnerable Kubernetes cluster, intended to help people self-train on attacking and defending Kubernetes clusters.
Peirates
Peirates is a penetration testing tool for Kubernetes, focused on privilege escalation and lateral movement. It has an interactive interface, wherein the penetration tester chooses actions from the techniques that Peirates encodes. Some of the techniques in Peirates will give you administrative access to the cluster in one-shot. Others are intended to get you tokens for an increasing number of service accounts that you can use to move laterally, steal secrets, and chain together to achieve the goals of your penetration test.
Featured Videos
Hacking And Hardening Kubernetes
Jay Beale, CTO, InGuardians
This webinar was recorded on 3/28/19
With microservices’ rise, Kubernetes gain adopters every day. It’s time for information security specialists to learn how to attack and defend container orchestration systems. This webinar will demonstrate attacks on Kubernetes clusters, then defenses that break those attacks.
Kubernetes Practical Attack And Defense
Jay Beale, CTO, InGuardians
RSA Conference 2020
A rising tide of engineering teams are running Kubernetes clusters. As an infosec professional, you need to understand attacks on Kubernetes and container-based applications. In this talk, we’ll demo Kubernetes attacks on the open-source Bust-a-Kube cluster, both manually and via the open-source Peirates tool. We’ll teach you how to attack and how to break your attacks.
Kubernetes Practical Attack And Defense – Scott Pilgrim Edition
Jay Beale, CTO, InGuardians
Blue Hat 2019
See attack and defense on Kubernetes, using a movie-themed “capture the flag” scenario. Included among the defenses: using pod security policies, root capability limits and AppArmor.
Want to see all of our videos? Subscribe to our YouTube channel!
Blog
Attacking and Detecting Attacks on Kubernetes Clusters – RSA2023
Kubernetes continues to gain adoption. One sign of its rapid growth is that more than five million developers are using it. Many companies don't yet have the most hardened clusters, particularly those in the early phases of their use. This session will demonstrate...
Wild West Hackin’ Fest – Why Does Kubernetes Make Me Feel Like a Newbie?
Slides from Jay Beale's Wild West Hackin' Fest presentation - Why Does Kubernetes Make Me feel Like a Newbie?
Wild West Hackin’ Fest – Kubernetes Attack and Defense: Real Genius Edition
Wild West Hackin' Fest Reno Kubernetes Attack and Defense: Real Genius Edition In this talk, Jay Beale demonstrates Kubernetes and public cloud attacks, attacking a multi-cluster scenario themed on the movie “Real Genius.” We’ll discuss multiple defenses available to...
InGuardians Press Release – InGuardians’ Live Online Training launches with top-ranking ‘Assessing and Exploiting Control System and IIoT’ class taught by Justin Searle
FOR IMMEDIATE RELEASE “InGuardians’ Live Online Training launches with top-ranking ‘Assessing and Exploiting Control System and IIoT’ class taught by Justin Searle” Seattle, WA - April 27, 2020 For more than 20 years, InGuardians’ core has been top-tier...
Quick Intro Attacking a Kubernetes Cluster
A special mini presentation by Jay Beale for this year's KringleCon Holiday Hack Challenge. https://www.youtube.com/watch?v=fZJ-5rAwcp0
Want custom InGuardians training for your team?
While we offer some of the classes through SANS and various infosec conferences, all of our classes are available for private training.
