Pentesting Cloud Sandboxes in the wild
Matthias and I talked about cloud sandboxes on virtual BSides Munich 2020. This blogpost summarizes the content of the talk.
2020-08-23
Tag: security
Pentesting Cloud Sandboxes in the wild
Matthias Luft & Jan Harrie, Bsides Munich, Munich/Virtual, Germany
2020-08-01
Container Breakouts – Part 3: Docker Socket
This post is part of a series and shows container breakout techniques that can be performed if a container is started with a mounted Docker socket inside the container.
2020-07-30
Container Breakouts – Part 2: Privileged Container
This post is part of a series and shows container breakout techniques that can be performed if a container is started privileged.
2020-07-21
Container Breakouts – Part 1: Access to root directory of the Host
This post is part of a series and shows container breakout techniques that can be performed if a container is started with access to the host root directory.
2020-07-15
Verify your Kubernetes Cluster Network Policies: From Faith to Proof
Implement a technical check that verifies implemented security measurements. In case of network policy, try to establish a blocked network connection. Keep the checks as simple as possible and propagate the results in existing monitoring solution.
2020-06-27
Training: Docker, Kubernetes & Security in Enterprise Environments
Kevin Kelpen & Jan Harrie, TROOPERS20, Heidelberg, Germany
2020-03-20
How to Secure OpenShift Environments and What Happens If You Don´t
Jan Harrie, DevSecCon, London, United Kingdom
2019-11-20
Das „s“ in DevOps steht für Security
Jan Harrie, BASTA! Autumn 2019, Mainz, Germany
2019-09-19
Docker, CI/CD & DevOps Security
Christoph Klaaßen & Jan Harrie, ISH Summit day, Munich, Germany
2019-05-08
TROOPERS19
Heidelberg, Germany
2019-03-20
Attacking VMware NSX
Matthias Luft & Jan Harrie, H2HC, São Paulo, Brazil
2018-09-17