This workshop supports content and knowledge from SEC541: Cloud Security Threat Detection.
In the last chapter, the Aviata team built a Kubernetes cluster with running applications from the ground up. In this chapter, we will approach that Kubernetes cluster from the eyes of an attacker, identifying a vulnerability and hacking the platform. We will then look at the logging and telemetry that we can get from AWS's Elastic Kubernetes Service (EKS), which detects and investigates the attack.
Each monthly workshop in the series is independent of the others. There are no technical or educational dependencies from one to the others.
Who Should Attend
This workshop is ideal for cybersecurity professionals and cloud engineers ready to dive deep into Kubernetes security, this workshop offers hands-on experience in attacking and defending AWS's Elastic Kubernetes Service, enhancing your skills in vulnerability identification, logging, and investigation.
Learning Objectives
- Understand the types of attacks against Kubernetes
- Perform an attack against your live system
- Understand how to set up and operate log collection for EKS
- Use AWS services to perform an investigation.
Scroll down for prerequisites and laptop requirements.
