Welcome to Bsides Seattle 2020
Back To Schedule
Saturday, October 17 • 3:00pm - 3:55pm
Kubernetes Practical Attack and Defense

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Learn to attack and defend the container orchestration system, Kubernetes, in this demo-heavy, Avengers-themed talk. As one of the hottest open source projects history, Kubernetes is no longer the primary realm of west coast technology firms.  A tremendous number of companies' engineering teams have begun running clusters. Information security professionals and DevOps engineers both need to understand the attacks and defenses against Kubernetes clusters, microservice-based applications and cloud environments. In this talk, we'll demonstrate Kubernetes attacks against the open source Bust-a-Kube cluster. We'll break the attacks with a host of defensive technologies, including configuration hardening, open source admission controllers and multiple competing container security tools. Every tool we use for attack or defense is freely-available. We'll perform our attacks manually, but also demonstrate a free tool, Peirates, that automates a portion of these attacks. Come learn to attack and defend Kubernetes!

avatar for Jay Beale

Jay Beale

CTO, InGuardians
Jay Beale works on Kubernetes and cloud native security, both as a professional threat actor and as a member of the Kubernetes project, where he previously co-led the Security Audit working group. He's the architect of the Peirates attack tool for Kubernetes, as well as of the @Bustakube... Read More →

Saturday October 17, 2020 3:00pm - 3:55pm PDT
Track B