YoVDO

Container Escape in 2021

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Virtualization Courses Cloud Security Courses Container Security Courses Cloud-Native Security Courses Vulnerability Research Courses

Course Description

Overview

Explore three new methods for escaping privileged runc containers in this 43-minute conference talk from HITB2021SIN. Delve into the world of cloud security and container escape techniques with Li Qiang, a senior security engineer at Ant Group. Learn about the latest exploits that take advantage of the shared kernel between traditional containers and hosts. Gain insights into topics such as privileged camp, sensitive amount, user mode helper, and user mode health. Discover the EPPF architecture, its use cases, and core concepts. Examine defense strategies, including EPF and secure containers. Perfect for security professionals and researchers interested in cutting-edge container security challenges and solutions.

Syllabus

Introduction
Agenda
Container
Privileged Camp
Sensitive Amount
User Mode Helper
Container Escape
User Mode Health
Information Misc Example
Information Internals
Misc Format
EPPF
EPPF Use Cases
EPPF Architecture
Core Concepts
Demo
DEFENSE
EPF
Secure Container
Summary


Taught by

Hack In The Box Security Conference

Related Courses

Ethical Hacking in 15 Hours - 2023 Edition - Learn to Hack
Cyber Mentor via YouTube Contextomy - Let's Debug Together
nullcon via YouTube macOS Security Features Bypasses by Example
nullcon via YouTube Exploiting Android Messengers with WebRTC
nullcon via YouTube XNU Heap Exploitation - From Kernel Bug to Kernel Control
nullcon via YouTube