This presentation will start on the very basics of what docker is and why organizations are willing to invest time and resources on it. The basics will explain how docker works, and its brief architecture. It would then dive into where the concept of containers originated from which would contain a brief history of containers. There will also be a brief comparison of dockers vs virtual machines. It would then go into terminologies commonly used in docker and a live demo on creating a docker image and deploying that image as a container. Once the basics are covered, the presentation will deep dive into docker internals and security features. It will briefly cover what are Namespaces, CGROUPS, Capabilities and Seccomp along with examples on how to configure/implement them.
The presentation will then explain how the docker features are usually misconfigured in organizations and how can they be used to gain root access to the host system. The presentation will essentially cover 3 misconfigurations with the help of live demos.
===
Currently working as a Threat Assessor/Red Teamer. Experience in performing web application assessments, internal/external network pentests, security control testing, cloud & container security assessments. CVE-2019- 6288[Reserved – fix under process], CVE-2016-5532, CVE-2016-5575, CVE-2016-5583, CVE-2016-5585, CVE-2016-5586, CVE-2016-5587, CVE-2016-5589, CVE-2016-5591, CVE-2016-5592, CVE-2016-5593, CVE-2016-5595, CVE-2016-5596. Netgear PSV – PSV-2017-0526 Certifications: OSCP, OSWP, CCNA-S, CCNA
0 Comments