Eviatar will explain how they built two tools: Kubiscan and Kubesploit (the one Eviatar will show in the arsenal) to help red and blue teamers to make k8s more secured. Visit https://securityweekly.com/summercamp2021 to view the Live Stream and previously recorded micro-interviews.
Chat live with the Security Weekly Staff, Hosts, and Guests in our Discord Server: https://discord.gg/pqSwWm4Full Episode Show Notes
Attacking & Defending Kubernetes Cluster
Eviatar Gerzi - Senior Security Researcher at CyberArk
Eviatar Gerzi is a Sr. Security Researcher at CyberArk. He worked in a range of professions in the security industry (malware analysis, mobile hacking, etc.). During this time, he developed open-source projects (security tools). His projects include: Ketshash, Manifesto, KubiScan, Kubeltctl, and Kubesploit. His current research is on DevOps security, focusing on Docker and Kubernetes.
Paul Asadoorian - Founder at Security Weekly
Paul Asadoorian is the founder of Security Weekly, which was acquired by CyberRisk Alliance. Paul spent time “in the trenches” implementing security programs for a lottery company and then a large university. Paul is offensive, having spent several years as a penetration tester. As Product Evangelist for Tenable Network Security, Paul built a library of materials on the topic of vulnerability management. When not hacking together embedded systems (or just plain hacking them) or coding silly projects in Python, Paul can be found researching his next set of headphones.