Loading…
Back To Schedule
Thursday, November 21 • 4:25pm - 5:55pm
Tutorial: Attacking and Defending Kubernetes Clusters: A Guided Tour - Brad Geesaman, Brad Geesaman Consulting; Jimmy Mesta, KSOC, Inc.; Tabitha Sable, Independent; & Peter Benjamin, Teradata (Limited Available Seating; First-Come, First-Served Basis)

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Feedback form is now closed.
Please bring your laptop fully charged as we will have limited charging stations available in the room.

Is your Kubernetes cluster able to resist the most common attacks? And, are all the necessary detection mechanisms in place to know if a security issue did occur?

In this hands-on workshop, the instructors will dive into the art and science of Kubernetes security through a series of interactive attack and defense scenarios. Attendees will learn through instructor-led exercises how to identify and exploit realistic misconfigurations in Kubernetes clusters to achieve full cluster compromise. Each attack step will be matched with hardening measures and specific methods for detection and response workflows.

Each workshop attendee will be provided with a pre-configured Kubernetes cluster running realistic workloads in a cloud-based lab environment. The tools and methodologies covered by these exercises will directly help attendees secure their own organization's clusters.
Speakers
avatar for Peter Benjamin

Peter Benjamin

Principal Security Engineer
Peter Benjamin is a Software Engineer with a background in Security and a co-organizer for the San Diego Kubernetes and Go meet-ups. He has a passion for enabling engineers to build secure and scalable applications, services, and platforms on modern distributed systems.
avatar for Brad Geesaman

Brad Geesaman

Kubernetes Security Consultant, Darkbit
Brad is an Independent Security Consultant helping clients improve the security of their Kubernetes clusters in cloud-native environments. Although he spent several years as a penetration tester, his real passion is educating others on the security risks inherent in complex infrastructure... Read More →
avatar for Jimmy Mesta

Jimmy Mesta

Founder, KSOC, Inc.
Jimmy is a security leader that has been working in AppSec and Infrastructure Security for over 10 years. He founded and led the OWASP Santa Barbara chapter and co-organized the AppSec California security conference. Jimmy has taught at private corporate events and security conferences... Read More →
avatar for Tabitha Sable

Tabitha Sable

Tabitha Sable has been a hacker and cross-platform sysadmin since the turn of the century. She can often be found teaching network offense and defense to sysadmins, system administration to security folks, bicycling, and asking questions that start with "I wonder what happens if we... Read More →

KubeCon NA 2019 Tutorial and CTF Attacking and Defending Kubernetes Clusters A Guided Tour pdf
Thursday November 21, 2019 4:25pm - 5:55pm
Room 30ABCDE - San Diego Convention Center Upper Level
  Tutorials, Security + Identity + Policy