Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

by do son · Published April 19, 2020 · Updated October 11, 2021

Attacking and Auditing Docker Containers and Kubernetes Clusters

An organization using microservices or any other distributed architecture relies heavily on containers and container orchestration engines like Kubernetes and as such its infrastructure security is paramount to its business operations.

This course will set the base for security testers and DevOps teams to test for common security vulnerabilities and configuration weaknesses across containerized environments and distributed systems. It also helps to understand the approach and process to audit the Kubernetes environment for security posture.

The courseware is meant to introduce participants to container and cluster management with Kubernetes.

The focus is on the security aspects of the application and the container infrastructure
The participants will learn the common tools and techniques that are used to attack applications running in containerized environments
The participants will be introduced to Kubernetes and learn to assess the attack surfaces applicable for a given application on the cluster
The participants will learn how to audit for security based on best practices using tools and custom scripts