Vulnerability Exploitation in Docker Container Environments
Offered By: Black Hat via YouTube
Course Description
Overview
Explore Docker container security vulnerabilities and exploitation techniques in this 49-minute Black Hat conference talk. Delve into the concerns surrounding containerization security, with a focus on Docker and LXC-based solutions. Learn about Linux control groups (cgroups), kernel-level isolation, and potential data theft risks. Witness real-world Docker implementation exploits and discover mitigation strategies. Cover topics such as Docker basics, remote API events, Linux namespaces, user namespaces, Docker installation, networking, and escape techniques. Examine decompression as a high ROI attack vector, discuss the presence of Bash in Docker containers, and consider modern analogies to Android malware. Gain insights into ELF malware concerns and the security implications of Docker Hub.
Syllabus
ABOUT ANTHONY BETTINI
CONTROL GROUPS (CGROUPS)
DOCKER VS. LXC
DOCKER BASICS
DOCKER REMOTE API EVENTS (ARCHITECTURE)
LINUX NAMESPACES
USER NAMESPACES
VULNERABILITIES & MALWARE
DOCKER INSTALLATION
DOCKER NETWORKING
DOCKER ESCAPE (FIXED)
DECOMPRESSION HIGHEST ROI ATTACK VECTOR
BASH IN A DOCKER CONTAINER?
MODERN ANALOGY
ANDROID MALWARE
IS ELF MALWARE REALLY A CONCERN?
DOCKER HUB
Taught by
Black Hat
Related Courses
Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security ChipBlack Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube