
Kubernetes Security: Attack & Defend Clusters (K8s Guide)
Kubernetes security, to some people is a complex subject because of the overwhelming jargon and the complex setup it requires to have a multi node cluster especially when you are doing it for the first time. The goal of this Course is to make things clearer and easier for those who are new to Kubernetes and Kubernetes security world.
🎬 TIMESTAMPS
SECTION 1: INTRODUCTION & LAB SETUP
0:00:00 Course Introduction
0:01:22 What is Kubernetes
0:03:47 Lab Setup (VM Downloads & Cluster Setup)
0:20:45 Verify Setup
0:21:30 Common Kubernetes Terms
0:32:52 Deploying Vulnerable Application
0:46:46 Introduction to Kubectl
SECTION 2: ATTACK SURFACE & MISCONFIGURATIONS
0:55:08 Kubernetes Attack Surface
1:00:05 Role Based Access Controls (RBAC)
1:24:09 Misconfiguring the Cluster
1:27:47 NMAP Scanning
1:30:01 Remote Command Execution
1:37:11 Post Exploitation Enumeration
1:47:15 Interacting with Containers
1:53:06 Compromising Worker Node
1:59:04 Compromising Master Node
2:03:05 Full Cluster Compromise
SECTION 3: ATTACKING KUBERNETES COMPONENTS
2:04:05 Attacking the API Server
2:14:36 Attacking the Kubelet API
2:24:07 Abusing etcd Storage
2:36:11 Attacking Exposed Dashboards
SECTION 4: AUTOMATED SCANNING TOOLS
2:49:26 Introduction to Automated Tools
2:50:12 Kube bench
2:58:28 Kube hunter
3:02:20 Trivy
3:06:37 Kube audit
3:10:40 Kubesec
SECTION 5: HARDENING KUBERNETES CLUSTERS
3:14:19 Limiting Network Exposure
3:17:29 Authorization
3:21:49 Secrets Management
3:23:50 Admission Controllers
3:26:44 Network Policies
3:37:42 Security Context
3:52:00 Apparmor Profiles
3:58:30 Seccomp Profiles
SECTION 6: BONUS
4:02:36 Bonus Lecture
4:02:52 End of Course
