Categories

I want to break free: The attacker inside a Container

Published: 27 November 2020
on channel: SBA Research
566
4

Talk
*****
Container environments provide an improved level of security compared to “just-run it side by side on one box”.
But is it enough? What can the attacker do with limited access? What can possibly go wrong?
We will do a hands on experiment what security measures are efficient and which are just a nice buzz-word.

Buzz words: Docker, rkt, DALC, MAC, Linux, Capabilities, SecComp

Speaker:
Reinhard Kugler, SBA Research
Talk language: English

About the Speaker:
*********************

Reinhard Kugler is Principal Security Consultant at SBA Research. He focuses on secure software engineering, infrastructure security and malware analysis. Currently his main activities concentrate on penetration testing.


Further trainings at SBA Research: https://www.sba-research.org/professi...

Watch video I want to break free: The attacker inside a Container online without registration, duration hours minute second in high quality. This video was added by user SBA Research 27 November 2020, don't forget to share it with your friends and acquaintances, it has been viewed on our site 56 once and liked it people.

play_arrow
9,12
46

مفاجأة مدوية: بعد فرنسا وأمريكا، دولة أخرى عضو دائم في مجلس الأمن تقترب من الاعتراف بمغربية الصحراء

مفاجأة مدوية: بعد فرنسا وأمريكا، دولة أخرى عضو دائم في مجلس الأمن تقترب من الاعتراف بمغربية الصحراء
play_arrow
30

Презентация ЕЛКи

Презентация ЕЛКи
play_arrow
2

Вбивайте бомжів, інакше ніяк)

Вбивайте бомжів, інакше ніяк)

play_arrow
2,953,68
28K

Gisel sama pacar barunya

Gisel sama pacar barunya
play_arrow
3,09
lik

The duel 2017 Euro Gunz (UGG) # 7

The duel 2017 Euro Gunz (UGG) # 7
play_arrow
1,150,80
5.5K

Нападение Мигалки

Нападение Мигалки
play_arrow
1

Купить дешевую одежду для собак

Купить дешевую одежду для собак
play_arrow
59
1

New Moon in Libra October 8/9 - Relationships, Love and Money

New Moon in Libra October 8/9 - Relationships, Love and Money
Related
play_arrow
How to (not) do Red Teaming - an orientation

How to (not) do Red Teaming - an orientation
play_arrow
Red Teaming 2.0: Modern Attacks and Enterprise Defenses

Red Teaming 2.0: Modern Attacks and Enterprise Defenses
play_arrow
ARES conference 2023

ARES conference 2023
play_arrow
Time Well Spent: Fresh ideas for hardening code against side-channel attacks

Time Well Spent: Fresh ideas for hardening code against side-channel attacks
play_arrow
Old Problems in New Technologies - How to get rid of known web vulnerabilities..

Old Problems in New Technologies - How to get rid of known web vulnerabilities..
play_arrow
Hack Azure K8s Cluster

Hack Azure K8s Cluster
play_arrow
Die Grenzen der Digitalisierung – Der (vergessene) Wert von analogen Mechanismen und Fallbacks

Die Grenzen der Digitalisierung – Der (vergessene) Wert von analogen Mechanismen und Fallbacks
play_arrow
Attack surface of Kubernetes environments

Attack surface of Kubernetes environments
play_arrow
SBA Research's Networks and Critical Infrastructures Security Group

SBA Research's Networks and Critical Infrastructures Security Group
play_arrow
Type-Driven Domain Design – Security in the Fabric of Your Code

Type-Driven Domain Design – Security in the Fabric of Your Code
play_arrow
„Safety and Security – Same, contradictory or just different?“

„Safety and Security – Same, contradictory or just different?“
play_arrow
Securing Code Without Negatively Impacting Development Velocity

Securing Code Without Negatively Impacting Development Velocity
play_arrow
Designing an end-to-end encryption protocol using Matrix's Olm/Megolm

Designing an end-to-end encryption protocol using Matrix's Olm/Megolm
play_arrow
The Security Testing Pyramid for Developers by Andreas Falk

The Security Testing Pyramid for Developers by Andreas Falk
play_arrow
Combinatorial Testing Methods and Algorithms for Detecting and Locating Cryptographic Trojans

Combinatorial Testing Methods and Algorithms for Detecting and Locating Cryptographic Trojans
play_arrow
Risikowahrnehmung und menschliche (Ir)Rationalität by Philipp Reisinger

Risikowahrnehmung und menschliche (Ir)Rationalität by Philipp Reisinger
play_arrow
Deploying and Managing Azure Sentinel as Code by Bojan Magusic

Deploying and Managing Azure Sentinel as Code by Bojan Magusic
play_arrow
Was ist Hacking? by Stefan Jakoubi & Thomas Konrad (SBA Research)

Was ist Hacking? by Stefan Jakoubi & Thomas Konrad (SBA Research)
play_arrow
Security Requirements Management 101 by Daniel Schwarz

Security Requirements Management 101 by Daniel Schwarz
play_arrow
Building a Secure Architecture – A Deep-Dive into Security Design Principles by Thomas Kerbl

Building a Secure Architecture – A Deep-Dive into Security Design Principles by Thomas Kerbl
play_arrow
SBA Research's (I)IoT, Systems and Industrial Security Group

SBA Research's (I)IoT, Systems and Industrial Security Group
play_arrow
SBA Research's Decentralized Systems Group

SBA Research's Decentralized Systems Group
play_arrow
OWASP Threat Modeling Playbook (OTMP) by Sebastien Deleersnyder

OWASP Threat Modeling Playbook (OTMP) by Sebastien Deleersnyder
play_arrow
SBA Research's Machine Learning & Data Management Group

SBA Research's Machine Learning & Data Management Group