YoVDO

Container Escape in 2021

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Virtualization Courses Cloud Security Courses Container Security Courses Cloud-Native Security Courses Vulnerability Research Courses

Course Description

Overview

Explore three new methods for escaping privileged runc containers in this 43-minute conference talk from HITB2021SIN. Delve into the world of cloud security and container escape techniques with Li Qiang, a senior security engineer at Ant Group. Learn about the latest exploits that take advantage of the shared kernel between traditional containers and hosts. Gain insights into topics such as privileged camp, sensitive amount, user mode helper, and user mode health. Discover the EPPF architecture, its use cases, and core concepts. Examine defense strategies, including EPF and secure containers. Perfect for security professionals and researchers interested in cutting-edge container security challenges and solutions.

Syllabus

Introduction
Agenda
Container
Privileged Camp
Sensitive Amount
User Mode Helper
Container Escape
User Mode Health
Information Misc Example
Information Internals
Misc Format
EPPF
EPPF Use Cases
EPPF Architecture
Core Concepts
Demo
DEFENSE
EPF
Secure Container
Summary


Taught by

Hack In The Box Security Conference

Related Courses

Maintaining Deployment Security in Microsoft Azure
Pluralsight Microsoft Azure Security Engineer: Configure Advanced Security for Compute
Pluralsight Microsoft Azure Security Technologies (AZ-500) Cert Prep: 2 Implement Platform Protection
LinkedIn Learning Securing Containers and Kubernetes Ecosystem
LinkedIn Learning Performing DevSecOps Automated Security Testing
Pluralsight