🎯 Preparing for the Certified Kubernetes Security Specialist (CKS) exam?
🔐 Master Kubernetes security and boost your cloud native skills!
I’ve written a detailed blog covering:
✅ What’s in the CKS exam
✅ Key domains & tips
✅ How to prepare effectively
📖 Read it here: https://bit.ly/4knIgLR
#CKS #Kubernetes #DevSecOps #CloudNative #LinuxFoundation #CKSExam #KubernetesSecurity #OpenSource
Man, Microsoft isn't mincing words about Kubernetes and Helm Charts! That whole "plug-and-play" thing? It can go south, *fast*. It's wild how many people forget that default settings are often basically an open door for trouble.
You know, working as a pentester, I see this kind of thing constantly. We're talking services just hanging out online with no real protection, authentication totally MIA... and then, *bam*, the data's just gone. It's a nightmare scenario, but it happens.
So, for real, everyone – you've *got* to dig into your YAML files and Helm charts. Don't just skim 'em; really get in there and check things over.
What are your biggest K8s security headaches? Seriously, what keeps you up at night with your setups? Drop a comment below!
#KubernetesSecurity #Pentesting #CloudSecurity
Default Helm charts in Kubernetes might be like leaving your front door unlocked – sensitive data and weak settings could be inviting trouble. Is your deployment really secure?
https://thedefendopsdiaries.com/enhancing-kubernetes-security-addressing-risks-in-helm-charts/
#kubernetessecurity
#helmcharts
#cybersecurity
#devsecops
#cloudsecurity
Let's level up our EKS security game! Join our hands-on webinar on "Shift Right Security for EKS" with Bion Consulting and Anchore. Learn practical techniques to identify and remediate vulnerabilities in your scaling EKS applications. We will focus on:
- Kubernetes Runtime Inventory and why it matters for container security
- How to install and configure Anchore's Runtime Inventory on Amazon EKS
- How Anch... https://get.anchore.com/shift-right-security-for-eks-anchore/ #EKS #KubernetesSecurity #DevSecOps #Anchore #SecurityWebinar
Want to level up your Kubernetes game? This article covers certifications, security, and your next steps! Check it out!
Continue reading the full article https://codelabsacademy.com/en/blog/kubernetes-certification-and-security-guide?source=mastadon
Making Sense of Kubernetes Initial Access Vectors
- Part 1: www.wiz.io/blog/making-sense-of-kubernetes-initial-access-vectors-part-1-control-plane
Does #cybersecurity really need another #Kubernetes vulnerability scanner? 👉 Heck yes!
💪 Find out WHY and HOW we built our newest tool in this candid behind-the-scenes by Security Research Engineer David Bors: https://pentest-tools.com/blog/how-and-why-we-built-the-kubernetes-vulnerability-scanner
How to ace a Kubernetes Administrator Interview in 2024: Key Concepts, Practical Skills, and Expert Tips
#KubernetesAdministratorInterview #KubernetesScenarioQuestions #KubernetesInterviewTips #KubernetesSecurity #KubernetesInterview #careerswami
Adversary Village at DEFCON 32 Workshop,
Julien Terriac (Adversary Simulation Engineer at datadog) will be giving a workshop on, “Hands-on Kubernetes security with KubeHound(Purple Teaming)”.
Workshop schedule: 12:00-14:00 PDT, Aug 10th 2024 at Adversary Village Workshop Stage, Las Vegas Convention Center.
More information on the Workshop: https://adversaryvillage.org/adversary-events/DEFCON-32/Julien-Terriac/
Schedule for Adversary Village at DEF CON 32: https://adversaryvillage.org/adversary-events/DEFCON-32/
Join our Discord server: https://adversaryvillage.org/discord
#AdversaryVillage #DEFCON #WeEngage #DEFCON32 #AdversaryTactics #adversaryemulation #Kubernetessecurity #purpleteaming #Kubehound
A Guide To Kubernetes Logs That Isn't A Vendor Pitch: https://grahamhelton.com/blog/k8slogs/?
Kubenomicon, this site serves as a wiki and reference for Kubernetes attacks and detection opportunities, and it's mapped across MITRE ATT&CK: https://kubenomicon.com/Kubenomicon.html
My #kubecon talk about #cloudnative desktops in action is on YouTube!
Mastering Kubernetes security: Safeguarding your container kingdom: https://redcanary.com/blog/kubernetes-security/
Does anyone have good links for where I can learn a bit more about egress proxies? Particularly for Kubernetes?
Use-case: I need to request a lot of potentially large media from servers outside of my control (one's that exist on the fediverse), and I'd like to do this as safely as possible, without exposing anything internal to my network/cluster.
Kubernetes security fundamentals:
- Introduction: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-1/
- API Security: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-2/
- Authentication: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-3/
- Authorization: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-4/
- Admission Control: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-5/
Appsecco published a two-part blog series on vulnerabilities they usually identify during Kubernetes Penetration Tests:
- A Pentester’s Approach to Kubernetes Security — Part 1: https://blog.appsecco.com/a-pentesters-approach-to-kubernetes-security-part-1-2b328252954a
- A Pentester’s Approach to Kubernetes Security — Part 2: https://blog.appsecco.com/a-pentesters-approach-to-kubernetes-security-part-2-8efac412fbc5
Datadog Kubernetes security fundamentals series:
- Introduction: https://securitylabs.datadoghq.com/articles/kubernetes-security-fundamentals-part-1/
How to Protect Yourself From the New Kubernetes Attacks in 2023: walks through four attacks targeting Kubernetes (Dero and Monero crypto miners, Scarleteel, RBAC-Buster), and security mitigations to prevent them.
https://ksoc.com/blog/how-to-protect-yourself-from-the-new-kubernetes-attacks-in-2023
Jemand auf der @heiseonline
@heisec
Heise #devsec nächste Woche?
Mal wieder ein Talk über #kubernetes und #kubernetessecurity
#devsecops
https://www.heise-devsec.de/veranstaltung-20729-0-sicherheit-in-kubernetes-skalieren.html
