Pentesting Cloud Sandboxes in the wild
Matthias and I talked about cloud sandboxes on virtual BSides Munich 2020. This blogpost summarizes the content of the talk.
Matthias and I talked about cloud sandboxes on virtual BSides Munich 2020. This blogpost summarizes the content of the talk.
This post is part of a series and shows container breakout techniques that can be performed if a container is started with a mounted Docker socket inside the container.
This post is part of a series and shows container breakout techniques that can be performed if a container is started privileged.
This post is part of a series and shows container breakout techniques that can be performed if a container is started with access to the host root directory.
Implement a technical check that verifies implemented security measurements. In case of network policy, try to establish a blocked network connection. Keep the checks as simple as possible and propagate the results in existing monitoring solution.