Kubernetes Security: Learn By Hacking [3 days] 16-18 Nov 2022

AUD 4500 (ex-GST)

Level: Advanced


We can now build complex systems, and experience their emergent security properties, faster than ever before. Are you ready for the cloud? How about cloud native technology like containers and Kubernetes?

With runtime and network security adapting from IP-based firewalling to zero trust for applications and networks, and supply chains increasingly under scrutiny with US executive orders and high-profile attacks, this course takes you through the modern cloud native landscape, and holds everything you need to know to secure Kubernetes and containers.

Combining Red Team and Blue Team approaches for that warm Purple-y feel, information security professionals and engineers will gain an understanding of the attack surface of a cloud native system: from building applications into containers and appraising supply chain vulnerabilities, through runtime detection and monitoring, to evading the system’s defences and popping shells, this course gives you the tools you need to understand how to attack and defend against present and future threat actors. Attendees will gain hands-on experience building, exploring, and securing real-world modern systems through an offensive lens.

Students have access to cloud-hosted clusters and will examine methods of compromise, play attack scenarios against real infrastructure, and then shift their focus to defending and remediating infrastructure services. This includes hardening the Kubernetes orchestrator and workload configuration, deploying security testing and monitoring software in pipelines and clusters, attacking and defending container supply chains, cryptographically signing images and build pipelines, and applying AppArmor and Seccomp profiles to containerized workloads.

Attacks and controls are threat-modelled to ensure that they are applied correctly, tested out-of-band to ensure their efficacy, and applied at multiple stages throughout the pipeline to enhance engineers' productivity and feedback loops.

Duration: 3 Days

Trainer: Andrew Martin

Andre Martin has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience delivering containerised solutions to enterprise and government. He is CEO at https://control-plane.io

Course Syllabus: Understand why many cloud native services have evolved quickly, and often miss vital security considerations, with Hacking Kubernetes (O’Reilly), GKE CIS Benchmark, and SANS authors:


Equipment needed:

Training fees are non-refundable. If the event is cancelled, all training fees paid are refundable in full.