We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

The Call is Coming From Inside The Cluster

2
 Cite
 Share
 Download
 Purchase
No logo availableDEF CON
 Henderson, Dagan Kline, Will

Formal Metadata

Title
The Call is Coming From Inside The Cluster
Subtitle
Mistakes Tha Lead to Whole Cluster Pwnership
Title of Series
Number of Parts
85
Author
Contributors
License
CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
Kubernetes has taken the DevOps world by storm, but its rapid uptake has created an ecosystem where many popular solutions for common challenges—storage, release management, observability, etc.—are either somewhat immature or have been “lifted and shifted” to Kubernetes. What critical security smells can pentesters look for when looking at the security of a cluster? We are going to talk through five different security problems that we have found (and reported, no 0-days here) in popular open-source projects and how you can look for similar vulnerabilities in other projects.