The Hacker's Guide to Kubernetes
Presentation 📣
English 🇬🇧
Wednesday, September 06, 5:00 – 5:45 PM
Length: 45 minutes
Room: Room 7
Abstract
Do you want to see live Kubernetes hacking? Come to see interactive demos where your newly registered accounts in a k8s application are hijacked. This talk guides you through various security risks of Kubernetes, focusing on OWASP Kubernetes Top 10 list. In live demos, you will find out how to exploit a range of vulnerabilities or misconfigurations in your k8s clusters, attacking containers, pods, network, or k8s components, leading to an ultimate compromise of user accounts in an exemplary web application. You will learn about common mistakes and vulnerabilities along with the best practices for hardening your Kubernetes systems.
Day & time
Wednesday, September 06, 5:00 – 5:45 PM
Intended audience
Audience: - Developers/DevOps engineers working or interested with Kubernetes. - Basic understanding of Kubernetes. Benefits: - understanding OWASP Kubernetes Top 10 - understanding how a series of simple misconfigurations/issues can lead to a successful cyberattack - "feeling" the danger in practise, which is much more useful than the theoretical slides - understanding best practices of hardening k8s clusters/workloads
Patrycja Wegrzynowicz
Patrycja is a lead engineer at Form3, working on reliability and performance of UK payments. She is also the founder of Yon Labs, a startup focusing on automated tools for detection and refactoring of security vulnerabilities, performance anti-patterns, or cloud issues and providing consultancy in Java, C++, Go, and cloud technologies. She is a regular speaker at software conferences, including CodeOne, JavaOne, Devoxx, JFokus, and others. She was awarded an Oracle Groundbreaker Ambassador title in 2020 and 2021. She was also named as one of Top 10 Women in Tech in Poland in 2016. Her interests focus on automated software engineering, mainly static and dynamic analysis techniques to support software verification, optimization, and deployment. The link to the slides: https://www.slideshare.net/patrycjawegrzynowicz3/the-hackers-guide-to-kubernetes
yonlabs