Breaking News



 

The Kubernetes Goat is designed to be an intentionally vulnerable cluster surroundings to learn and apply Kubernetes protection.

Visit https://madhuakula.com/kubernetes-goat for the guidelines.

Show us some

Please feel free to send us a PR and show some

 

Upcoming Training’s and Classes

DEFCON DEMO Labs

Cloud Village – DEFCON

Contemporary Kubernetes Goat Displays

OWASP Bay Area Meetup

 

DEFCON Red Personnel Village

Merely click on on and Play inside the browser free of charge using Katacoda Playground – Check out now

https://katacoda.com/madhuakula/scenarios/kubernetes-goat

Putting in place Kubernetes Goat

  • Quicker than we prepare the Kubernetes Goat, ensure that it’s essential to have created and have admin access to the Kubernetes cluster
  • Organize the helm type 2 on your path as helm2. Visit helm releases for more information about setup
  • Then in spite of everything setup Kubernetes Goat by the use of operating the following command
git clone https://github.com/madhuakula/kubernetes-goat.git
cd kubernetes-goat
bash setup-kubernetes-goat.sh
  • To export the ports/products and services and merchandise locally to start out out learning, run the following command
bash access-kubernetes-goat.sh

Kubernetes Goat – KIND setup

  • If you want to setup Kubernetes Goat using KIND, check with kind-setup

Eventualities

  1. Subtle keys in code-bases
  2. DIND (docker-in-docker) exploitation
  3. SSRF in K8S international
  4. Container get away to access host system
  5. Docker CIS Benchmarks analysis
  6. Kubernetes CIS Benchmarks analysis
  7. Attacking private registry
  8. NodePort exposed products and services and merchandise
  9. Helm v2 tiller to PwN the cluster
  10. Analysing crypto miner container
  11. Kubernetes Namespaces bypass
  12. Gaining surroundings knowledge
  13. DoS the memory/CPU resources
  14. Hacker Container preview
  15. Hidden in layers
  16. RBAC Least Privileges Misconfiguration
  17. KubeAudit – Audit Kubernetes Clusters
  18. Sysdig Falco – Runtime Protection Monitoring & Detection
  19. Popeye – A Kubernetes Cluster Sanitizer
  20. Safe neighborhood barriers using NSP

Showcase



Disclaimer

Kubernetes Goat creates intentionally vulnerable resources into your cluster. DO NOT deploy Kubernetes Goat in a producing surroundings or alongside any refined cluster resources.

Kubernetes Goat comes with utterly no warranties by any means. Thru using Kubernetes Goat, you take entire duty for all effects that outcome.




Leave a Reply

Your email address will not be published. Required fields are marked *

Donate Us

X