March 5th OWASP Meeting
Ralph Durkee (OWASP)
Join us at 6pm on Thursday, Mar 5th for some great fun and food with our own Mark Manning! Mark is presenting on:
Command and KubeCTL: Real-World Kubernetes Security for Pentesters
Kubernetes is a security challenge that many organizations need to take on, and we as pentesters, developers, security practitioners, and the technically curious need to adapt to these challenges. In this talk we will look at tactics, techniques, and tools to assess and exploit Kubernetes clusters. We will demonstrate how to intercept service mesh traffic, evade runtime syscall filters, exploit custom sidecars, and chain attacks that go from compromising a build environment, to exploiting production applications. We’ll cover real world attack paths, provide practical advice, and guidance using the experience of conducting hundreds of reviews of containerized environments while running NCC Group’s container research group.
Mark Manning (@antitree) is a Technical Director with NCC Group and heads the container research practice there. He has been focused on containerization and orchestration technologies like Kubernetes and performs many of NCC Group’s containerization related assessments and research. This includes running container breakouts and attack simulations on orchestration environments, performing architecture reviews of devops pipelines, and working with developers to assist with applications that leverage containerization technologies like namespace isolation, Linux kernel controls, syscall filtering, and integration with products like Docker and Kubernetes.
Please RSVP to Ralph....@owasp.org so we can know who all is coming. We'll provide pizza and soda.
Directions:
- Nixon Peabody (13th Floor), 1300 Clinton Square, Rochester, NY 14604
- Parking Entrance: https://goo.gl/maps/gdY46GLiR3C2
- Please bring your parking ticket with you for validation.
- Take the garage elevator to the lobby.
- Please sign in with the security guard.
- Then take lobby elevators to the 13th floor.
- Return your parking ticket to the security desk before leaving.
Ralph Durkee (OWASP)
IMPORTANT UPDATE: We are changing the start time to
5:30pm for the March 5th meeting with Mark Manning. Please note
the change. The room is the Lomb conference room on the 13th
floor. When you get to the 13th floor the receptionist may guide
you, or go in front of the receptionist desk and then turn left.
-- Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN, GXPN
Principal Security Consultant
--
You received this message because you are subscribed to the Google Groups "Rochester chapter announce" group.
To unsubscribe from this group and stop receiving emails from it, send an email to rochester-chapter-a...@owasp.org.
To view this discussion on the web visit https://groups.google.com/a/owasp.org/d/msgid/rochester-chapter-announce/26f160ca-3fb8-4791-33f1-b2d4617245b6%40owasp.org.
Ralph Durkee (OWASP)
IMPORTANT UPDATE: We are changing the start time to
5:30pm for the March 5th meeting with Mark Manning. Please note
the change. The room is the Lomb conference room on the 13th
floor. When you get to the 13th floor the receptionist may guide
you, or go in front of the receptionist desk and then turn left.
-- Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN, GXPN
Principal Security Consultant
Ralph Durkee (OWASP)
Final reminder: RSVP for the March 5th OWASP meeting with Mark
Manning by Mar 2nd.
-- Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN, GXPN
Principal Security Consultant
IMPORTANT UPDATE: We are changing the start time to 5:30pm for the March 5th meeting with Mark Manning. Please note the change. The room is the Lomb conference room on the 13th floor. When you get to the 13th floor the receptionist may guide you, or go in front of the receptionist desk and then turn left.
-- Ralph Durkee, CISSP, C|EH, GSEC, GCIH, GSNA, GCIA, GPEN, GXPN
Principal Security Consultant
On 2/16/20 12:18 PM, Ralph Durkee (OWASP) wrote:
--