Hack My Misconfigured Kubernetes
|
In this hands-on presentation, you’ll see a demonstration on some of the key security issues that affect your Kubernetes configuration. You’ll hear what they actually mean, what an attacker can do to your cluster and howto fix them.
In the last few years, more responsibilities have shifted to development teams. With the widespread adoption of Kubernetes, configurations become a developer issue first and foremost. This responsibility means that developers need to be aware of the security risks involved in their configurations. Just by themselves, those configuration security risks might not be so harmful, but with other vulnerable components in the production environment, like the libraries used in the application, or a malicious container, potential attackers can build a multi-steps attack vector, using all of these risks together. Developers should give the necessary attention to those risks and make sure that our applications and clusters are as secure as possible. In this hands-on presentation, you’ll see a demonstration on some of the key security issues that affect your Kubernetes configuration. You’ll hear what they actually mean, what an attacker can do to your cluster and howto fix them.
Author Name: DevSecCon
Author Description:
DevSecCon is the global community dedicated to DevSecOps to help implement security in the overall development process. If you’re a security enthusiast & you want to learn more about how to better secure your team, then check out our community & resources.
User Reviews
Be the first to review “Hack My Misconfigured Kubernetes”
Related Products
Leveraging Network Interconnection Options on the GCP
This course focuses on network interconnections where one or both of the connected networks are on the GCP. This includes understanding peering and interconnect as well as how shared VPCs and static and dynamic VPN are implemented.
Preparing for Your Professional Cloud Security Engineer Journey
This course helps learners prepare for the Professional Cloud Security Engineer (PCSE) Certification exam.
Exam Alert: Design Business Continuity in Microsoft Azure
Preparing for an exam can be scary and confusing. This course will teach you what to expect and how to maximize your learning and be successful.
Microsoft 365 Messaging: Managing Mail Architecture
This course will teach you the skills required to plan and manage mail architecture, and to prepare you for the MS-203 certification exam.
Splunk 9: Creating Workflow Actions
Have you been wanting to use your data better within Splunk? This course will give you the knowledge and tools to help you learn more about this SIEM, the workflow actions possible within it, and how to use them to add more context to your data.
Architecting Global Private Clouds with VPC Networks
This course introduces networking and VPCs on the Google Cloud Platform (GCP). This includes: auto and custom VPCs, the differences between VPCs on the GCP versus Amazon Web Services (AWS), designing subnets, and advanced features such as Shared VPC.
There are no reviews yet.