Dates
Conferences
Tags
Sort by:
Most recent
Conference: SupplyChainSecurityCon 2022
Authors: Ariel Shuper
2022-06-22
tldr - powered by Generative AI
The need for a deeper Kubernetes risk assessment framework beyond the current CIS benchmarks
- The current common Kubernetes risk assessment framework is based on the CIS benchmarks for Kubernetes
- The framework only covers security misconfigurations and doesn't go deeper than the security configurations of the various elements
- Real attacks can start by multiple elements expanding beyond security misconfigurations
- There is a need for an additional risk-assessment framework that can go deeper than the Kubernetes configurations, verifying that all other attack methods, steps, and stages are covered
- MITRE has crafted an ATT&CK matrix for containers/Kubernetes, which consists of tactics and techniques used in real attacks
Conference: OWASP 20th Anniversary Event
Authors: Magno Logan
2021-09-24
tldr - powered by Generative AI
The presentation discusses different attack scenarios on Kubernetes clusters and provides best practices for securing them.
- Overview of Kubernetes architecture and components
- Using K8s Threat Matrix and MITRE ATT&CK for Containers to demonstrate attack phases
- Best practices for securing Kubernetes clusters
- Anecdote about a vulnerable Drupal web application used for modeling attacks