The presentation discusses the importance of understanding containerization and its impact on application security testing and penetration testing. The speaker emphasizes the need for cybersecurity professionals to develop their skill sets and keep up with new technologies to stay ahead of attackers.
- Containerization is becoming more important in application security testing and penetration testing
- Developers' use of containerization opens them up to more vulnerabilities than vulnerabilities in the platform itself
- Understanding containerization allows for post-exploitation manipulation and instrumentation
- Exploitation of containerized apps begins with a vulnerability in the surface level of the attack surface
- Cybersecurity professionals need to keep up with new technologies to stay ahead of attackers
The speaker gives an example of an intelligence collection platform that uses containerization to store data temporarily or buffer it. This democratizes post-exploitation manipulation and instrumentation, allowing attackers to connect to Redis and start dumping a list of queries that are made to it, or start poking at the data reading it and writing it, without interrupting the processing of the program.