Container Security Site

This is a site with some container security resources. It is (and probably always will be) a work in progress, but hopefully you'll find some useful information. Issues and PRs welcome on GitHub.

General Information

• Container Reading List
• Container Terms for Security people
• Security Terms for Container people
• Container CVE List
• Container/Kubernetes Security Tools
• Container Security Standards

Information for Attackers

Resources for pentesters/redteamers and people looking to get more information about the offensive side of container security. Methodologies for testing and some tooling information.

• External Attacker Checklist
• Compromised Container Checklist
• Compromised User Credentials Checklist
• Attacker Manifests
• Container Breakout Vulnerabilities

Information for Defenders

• Kubernetes Security Architecture Considerations
• Kubernetes RBAC Good Practice - This docs page gives guidance on avoiding common Kubernetes RBAC pitfalls.
• Kubernetes API Server Bypass Risks - This docs page shows places where it may be possible to bypass the Kubernetes API server, an important point as many security controls are focused on the API server.

Security Research

Content that relates to container security but doesn't neatly fit in to attacker/defender buckets

• Node/Proxy Rights in Kubernetes