BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.pass-the-salt.org//pts2021//speaker//J3BG8Z
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-pts2021-MZRXDW@cfp.pass-the-salt.org
DTSTART;TZID=CET:20210707T140000
DTEND;TZID=CET:20210707T143500
DESCRIPTION:This presentation aims to talk about different attack scenarios
  leveraging Kubernetes clusters. We'll dig deeper into a real-world attack
  scenario using real-world applications to demonstrate different ways atta
 ckers and malicious users can use to exploit your cluster and the applicat
 ions running on it. But first\, we’ll give an overview about Kubernetes 
 and its architecture\, covering the main components from the Control Plane
  and the Worker Nodes. Then\, we'll use the K8s Threat Matrix and the MITR
 E ATT&CK for Containers published this year to discuss the Tactics\, Techn
 iques and Procedures to demonstrate the Recon\, Exploitation and Post-Expl
 oitation phases. After that\, we'll provide some best practices to securin
 g your cluster based on the scenarios and the CIS Benchmarks for Kubernete
 s. We'll show how to use Role-based access control (RBAC)  for Access Cont
 rol\, to enable audit logs for security and troubleshooting\, and we'll se
 t up some network policies to avoid communication between pods and prevent
  any lateral movement from attackers.
DTSTAMP:20260512T153644Z
LOCATION:Zoom room
SUMMARY:ATT&CKing Kubernetes: A technical deep dive into the new ATT&CK for
  Containers - Magno Logan
URL:https://cfp.pass-the-salt.org/pts2021/talk/MZRXDW/
END:VEVENT
END:VCALENDAR