YoVDO

Container Escape in 2021

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Virtualization Courses Cloud Security Courses Container Security Courses Cloud-Native Security Courses Vulnerability Research Courses

Course Description

Overview

Explore three new methods for escaping privileged runc containers in this 43-minute conference talk from HITB2021SIN. Delve into the world of cloud security and container escape techniques with Li Qiang, a senior security engineer at Ant Group. Learn about the latest exploits that take advantage of the shared kernel between traditional containers and hosts. Gain insights into topics such as privileged camp, sensitive amount, user mode helper, and user mode health. Discover the EPPF architecture, its use cases, and core concepts. Examine defense strategies, including EPF and secure containers. Perfect for security professionals and researchers interested in cutting-edge container security challenges and solutions.

Syllabus

Introduction
Agenda
Container
Privileged Camp
Sensitive Amount
User Mode Helper
Container Escape
User Mode Health
Information Misc Example
Information Internals
Misc Format
EPPF
EPPF Use Cases
EPPF Architecture
Core Concepts
Demo
DEFENSE
EPF
Secure Container
Summary


Taught by

Hack In The Box Security Conference

Related Courses

Browser Hacking With ANGLE
Hack In The Box Security Conference via YouTube Can A Fuzzer Match A Human
Hack In The Box Security Conference via YouTube Biometrics System Hacking in the Age of the Smart Vehicle
Hack In The Box Security Conference via YouTube ICEFALL - Revisiting A Decade Of OT Insecure-By-Design Practices
Hack In The Box Security Conference via YouTube Fuzzing the MCU of Connected Vehicles for Security and Safety
Hack In The Box Security Conference via YouTube