YoVDO

Container Escape in 2021

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Virtualization Courses Cloud Security Courses Container Security Courses Cloud-Native Security Courses Vulnerability Research Courses

Course Description

Overview

Explore three new methods for escaping privileged runc containers in this 43-minute conference talk from HITB2021SIN. Delve into the world of cloud security and container escape techniques with Li Qiang, a senior security engineer at Ant Group. Learn about the latest exploits that take advantage of the shared kernel between traditional containers and hosts. Gain insights into topics such as privileged camp, sensitive amount, user mode helper, and user mode health. Discover the EPPF architecture, its use cases, and core concepts. Examine defense strategies, including EPF and secure containers. Perfect for security professionals and researchers interested in cutting-edge container security challenges and solutions.

Syllabus

Introduction
Agenda
Container
Privileged Camp
Sensitive Amount
User Mode Helper
Container Escape
User Mode Health
Information Misc Example
Information Internals
Misc Format
EPPF
EPPF Use Cases
EPPF Architecture
Core Concepts
Demo
DEFENSE
EPF
Secure Container
Summary


Taught by

Hack In The Box Security Conference

Related Courses

Building on Microsoft Sentinel Platform
Microsoft via YouTube Securing Applications and Infrastructure on Kubernetes with Sysdig
Mirantis via YouTube Running at Light Speed - Cloud Native Security Patterns
LASCON via YouTube Controlled Mayhem With Cloud Native Security Pipelines
OWASP Foundation via YouTube Running at Light Speed - Cloud Native Security Patterns
OWASP Foundation via YouTube