Hacking Kubernetes
Download Hacking Kubernetes PDF/ePub or read online books in Mobi eBooks. Click Download or Read Online button to get Hacking Kubernetes book now. This website allows unlimited access to, at the time of writing, more than 1.5 million titles, including hundreds of thousands of titles in various foreign languages.
Hacking Kubernetes
Author: Andrew Martin
language: en
Publisher: "O'Reilly Media, Inc."
Release Date: 2021-10-13
Want to run your Kubernetes workloads safely and securely? This practical book provides a threat-based guide to Kubernetes security. Each chapter examines a particular component's architecture and potential default settings and then reviews existing high-profile attacks and historical Common Vulnerabilities and Exposures (CVEs). Authors Andrew Martin and Michael Hausenblas share best-practice configuration to help you harden clusters from possible angles of attack. This book begins with a vanilla Kubernetes installation with built-in defaults. You'll examine an abstract threat model of a distributed system running arbitrary workloads, and then progress to a detailed assessment of each component of a secure Kubernetes system. Understand where your Kubernetes system is vulnerable with threat modelling techniques Focus on pods, from configurations to attacks and defenses Secure your cluster and workload traffic Define and enforce policy with RBAC, OPA, and Kyverno Dive deep into sandboxing and isolation techniques Learn how to detect and mitigate supply chain attacks Explore filesystems, volumes, and sensitive information at rest Discover what can go wrong when running multitenant workloads in a cluster Learn what you can do if someone breaks in despite you having controls in place
Hacking Kubernetes
This practical book shows you how to attack and defend the popular container orchestrator, Kubernetes. Based on their combined 10 years of hands-on experience in designing, running, and attacking Kubernetes-based workloads and clusters, authors Andrew Martin and Michael Hausenblas equip cloud native security practitioners like you with the tools you need to be successful. You'll learn about Kubernetes default configurations, how to exploit them, and then defend against the attacks! The book takes a hands-on approach and teaches you what it takes to run Kubernetes securely, both on a strategic as well as an operational level.
ICT Systems Security and Privacy Protection
Author: Lili Nemec Zlatolas
language: en
Publisher: Springer Nature
Release Date: 2025-05-15
The two-volume set IFIP AICT 745 + 746 constitutes the refereed proceedings of the 40th IFIP International Conference on ICT Systems Security and Privacy Protection, SEC 2025, held in Maribor, Slovenia, during May 21-23, 2025. The 28 full papers and 7 workshop papers included in this book were carefully reviewed and selected from 127 submissions. They were organized in topical sections as follows: Privacy protection; Industrial and Critical Infrastructure Security; Applied Cryptography; Data and Application Security; and International Workshop on Network and Distributed Systems Security (WNDSS 2025).