A Practical Approach to Breaking & Pwning Kubernetes Clusters: An Advanced Hands-On Approach [2104]

As Kubernetes adoption in production environments reaches pretty much everywhere, security teams continue to face significant challenges in understanding and securing these complex, modern technologies. This hands-on, scenario-based training is designed to bridge that gap. Participants will learn to attack and assess Kubernetes cluster environments across various layers, including Supply Chain, Infrastructure, Runtime, and more.

In this updated course, participants will:

1. Exploit misconfigurations and private registries through effective reconnaissance techniques.
2. Escape containers and move laterally within clusters to gain unauthorized access.
3. Elevate privileges, conduct DoS attacks, and bypass security policies like Network Security Policies (NSP) and Role-Based Access Controls (RBAC).
4. Gain access to sensitive data, logs, and microservices, breaching cluster boundaries.
5. Deploy defence evasion techniques and establish persistence within the cluster.
6. Bypass security solutions such as policy engines, resource limits, and controls.
7. Conduct comprehensive cluster security evaluations using CIS benchmarks and audits.

By the end of the course, participants will have the skills to conduct architecture reviews, security assessments, red team exercises, and penetration testing on Kubernetes clusters and containerized environments. A detailed digital guidebook with resources and references will be provided to extend learning beyond the training.