Three Years of Lessons Running Potentially Malicious Code Inside Containers - Ben Hall, Katacoda

less than 1 minute read

Abstract

For the past three years, Katacoda has been providing an online learning and training environment for cloud-native technologies. The live environments for Docker, Kubernetes and other Cloud-Native technologies are accessible via the browser. A side effect is that users can, and have, execute malicious code and attempted to hack the system from inside the container. In this talk, Ben will share the lessons learned of building Katacoda and some of the interesting stories and security attempts from the past three years. This talk will give insight into: - Out of the box security with Docker and Kubernetes - Docker and Linux security issues - Monitoring for malicious activity - What happens when it all goes wrong In the end, attendees will learn different approaches they can take to secure their own systems and be prepared for potential attacks they might face.

Sched URL

Video

Twitter Facebook LinkedIn

About

Conferences

Three Years of Lessons Running Potentially Malicious Code Inside Containers - Ben Hall, Katacoda

Abstract

Video

You May Also Enjoy

You Shall Not Pass! Unless You Are GUAC Verified…. - Parth Patel, Kusari & Dejan Bosanac, Red Hat

Living off the Land Techniques in Managed Kubernetes Clusters - Ronen Shustin & Shay Berkovich, Wiz

Leveraging OCI 1.1 for Enhanced SBOM Integration and Vulnerability Scanning in Harbor - Anais Urlichs, Aqua Security & Shengwen Yu, VMware

Lessons Learned from Generating 100M SBOMs: Google’s Approach to SBOM Compliance - Brandon Lum & Isaac Hepworth, Google