Kubernetes Security Fundamentals: Misconfigurations, flaws and hardening
Deep Dive (INTERMEDIATE level)
Imlil
In this workshop, we will unveil the nature of containers, provide a brief introduction to Kubernetes, explain what makes this orchestration solution so popular, and explore its main components. This will allow us to introduce the main attack vectors on this platform, learn about tools and techniques for conducting audits, and explain how to reduce the attack surface using both built-in solutions and third-party tools.
Luis Toro Puig
NCC Group
Luis Toro Puig began his IT career as a systems technician before delving into the world of cybersecurity in 2019, working in Security Operations Centers (SOCs) for the banking and energy sectors. After solidifying his experience in asset protection, he shifted towards ethical hacking as a penetration tester in PCI environments. In recent years, he has specialized in Kubernetes and container systems. Currently, he is a security consultant at NCC Group and has been a speaker at Euskalhack 2023 and Kubecon China 2023.