This is an extra resources related to security topic for Kubernetes to keep your cluster is up-to-date and more secure.
- Kubernetes-security.info
- Aquasecurity Blogs
- Control-plane/Andrew Martin @sublimino: 11 ways not to get hacked
- Simulator: A distributed systems and infrastructure simulator for attacking and debugging Kubernetes
- Andrew Martin Attacking and Defending Cloud Native Infrastructure
- How to Train your Red Team (for Cloud-Native) - Andrew Martin, ControPlane
- InGuardians/Jay Beale: Kubernetes Practical attacks and defences
- CNCF cloud-native security white paper Nov 2020
- Free O'Reilly Kubernetes security book compliments of Aqua - by Liz Rice and Michael Hausenblas
- CNCF Kubernetes Security Anatomy and the Recently Disclosed CVEs (CVE-2020-8555, CVE-2020-8552)
- Kubernetes Vulnerability Puts Clusters at Risk of Takeover (CVE-2020-8558)
- CVE-2020-8559: Privilege escalation from compromised node to cluster
- CVE-2020-8557: Node disk DOS by writing to container /etc/hosts
- Madhu Akula's Kubernetes Goat - Vulnerable cluster environment to learn and practice Kubernetes security.
- Kubernetes Capture the Flag vagrant environment - was hosted online on http://k8s-ctf.rocks/
- KubeCon NA 2019 CTF Tutorial Guide