Kubernetes

Learning Resources and Tools

InGuardians is recognized as a leader in cloud and container security. The InGuardians team delivers talks and training on Kubernetes and container security at top industry conferences like RSA and the Black Hat Briefings.

InGuardians has served as members of the Kubernetes project Security Audit Working Group and includes a Kubernetes project contributor. The team has also developed Open Source projects for Kubernetes, including Peirates, a Kubernetes penetration testing tool, and Bustakube, an intentionally-vulnerable Kubernetes cluster built as a teaching tool.

LEARNING RESOURCES

Tools

Bust – A – Kube

Bust -A -Kube is an intentionally-vulnerable Kubernetes cluster, intended to help people self-train on attacking and defending Kubernetes clusters.

Peirates

Peirates is a penetration testing tool for Kubernetes, focused on privilege escalation and lateral movement. It has an interactive interface, wherein the penetration tester chooses actions from the techniques that Peirates encodes. Some of the techniques in Peirates will give you administrative access to the cluster in one-shot. Others are intended to get you tokens for an increasing number of service accounts that you can use to move laterally, steal secrets, and chain together to achieve the goals of your penetration test.

Featured Videos

Hacking And Hardening Kubernetes

Jay Beale, CTO, InGuardians

This webinar was recorded on 3/28/19

With microservices’ rise, Kubernetes gain adopters every day. It’s time for information security specialists to learn how to attack and defend container orchestration systems. This webinar will demonstrate attacks on Kubernetes clusters, then defenses that break those attacks.

Kubernetes Practical Attack And Defense

Jay Beale, CTO, InGuardians

RSA Conference 2020

A rising tide of engineering teams are running Kubernetes clusters. As an infosec professional, you need to understand attacks on Kubernetes and container-based applications. In this talk, we’ll demo Kubernetes attacks on the open-source Bust-a-Kube cluster, both manually and via the open-source Peirates tool. We’ll teach you how to attack and how to break your attacks.

Kubernetes Practical Attack And Defense – Scott Pilgrim Edition

Jay Beale, CTO, InGuardians

Blue Hat 2019

See attack and defense on Kubernetes, using a movie-themed “capture the flag” scenario. Included among the defenses: using pod security policies, root capability limits and AppArmor.

Want to see all of our videos? Subscribe to our YouTube channel! 

 

Blog

InGuardians Press Release – InGuardians’ Live Online Training launches with top-ranking ‘Assessing and Exploiting Control System and IIoT’ class taught by Justin Searle

FOR IMMEDIATE RELEASE   “InGuardians’ Live Online Training launches with top-ranking ‘Assessing and Exploiting Control System and IIoT’ class taught by Justin Searle” Seattle, WA - April 27, 2020  For more than 20 years, InGuardians’ core has been top-tier...

read more

Attacking And Defending Kubernetes

Our CTO, Jay Beale, delivered a talk last week on Kubernetes Attack and Defense, with demonstrations. You can find the slides, including Youtube links to all demonstration videos and CTF walkthrough at: https://inguardians.box.com/s/cud8itarxt2u0gh4rec23npvls56kdk1

read more

Want custom InGuardians training for your team?

Training is at InGuardians’ core. Our founders have developed industry-leading courses in the areas of penetration testing, ICS and Hardware hacking, RF and Wireless hacking  and incident response.

While we offer some of the classes through SANS and various infosec conferences, all of our classes are available for private training.