_ _ _ _
| | | | (_) |
___| | ___ _ _ __| |______ ___ ___ ___ _ _ _ __ _| |_ _ _
/ __| |/ _ \| | | |/ _` |______/ __|/ _ \/ __| | | | '__| | __| | | |
| (__| | (_) | |_| | (_| | \__ \ __/ (__| |_| | | | | |_| |_| |
\___|_|\___/ \__,_|\__,_| |___/\___|\___|\__,_|_| |_|\__|\__, |
__/ |
|___/
国内关于k8s docker安全内容少之又少,关于靶场部分只是讲的很模糊,这里我学习了国外的云安全文章的一些笔记,希望对各位师傅有一些帮助[还有很多东西还在编写中]
- k8s靶场搭建
- Sensitive keys in codebases
- DIND (docker-in-docker) exploitation
- SSRF in the Kubernetes (K8S) world
- Container escape to the host system`
- k8s基础知识
- 环境地址:https://pan.baidu.com/s/1h6nr8izEoRtcIhP27BcHuQ?pwd=ymi7
- 还在编写中
2023/11/20
添加
k8s靶场搭建
Sensitive keys in codebases
DIND (docker-in-docker) exploitation
SSRF in the Kubernetes (K8S) world
Container escape to the host system`
k8s基础知识
https://madhuakula.com/kubernetes-goat/docs/
https://github.com/madhuakula/kubernetes-goat
https://cloud.hacktricks.xyz/
感谢以上博客以及github,让我受益良多[以上排名不分先后]