Pentesting Cloud Sandboxes in the wild
Matthias and I talked about cloud sandboxes on virtual BSides Munich 2020. This blogpost summarizes the content of the talk.
Matthias and I talked about cloud sandboxes on virtual BSides Munich 2020. This blogpost summarizes the content of the talk.
Matthias Luft & Jan Harrie, Bsides Munich, Munich/Virtual, Germany
This post is part of a series and shows container breakout techniques that can be performed if a container is started with a mounted Docker socket inside the container.
This post is part of a series and shows container breakout techniques that can be performed if a container is started privileged.
This post is part of a series and shows container breakout techniques that can be performed if a container is started with access to the host root directory.
Implement a technical check that verifies implemented security measurements. In case of network policy, try to establish a blocked network connection. Keep the checks as simple as possible and propagate the results in existing monitoring solution.
Kevin Kelpen & Jan Harrie, TROOPERS20, Heidelberg, Germany
Jan Harrie, DevSecCon, London, United Kingdom
Jan Harrie, BASTA! Autumn 2019, Mainz, Germany
Christoph Klaaßen & Jan Harrie, ISH Summit day, Munich, Germany
Heidelberg, Germany
Matthias Luft & Jan Harrie, H2HC, São Paulo, Brazil