Kubernetes security notes and best practices
This repo is a collection of kubernetes security stuff and research.
The research was conducted during Summ3r 0f h4ck traineeship.
In-depth research about security of kubernetes features and misconfigurations. Source for all documents below
A "must do"/best practices list of things to make attacker's life hard
A checklist of flags to quickly test if your cluster has security features enabled.
A guide for attacker: what to do if he gets to pod/cluster.
Also, some attacks included
Page with sources for security announces and previous vulnerabilities
Script for enumerating services in kubernetes cluster. Common services dictionary provided.