Kubernetes Pentesting – Part 5: Full etcd Secrets Dump

Thanks for watching! You can access the full Kubernetes lab setup and download files using the link below: https://buymeacoffee.com/offensiveopslabs/e/531485 In this fifth installment of our Kubernetes penetration-testing series, we show how an attacker who’s gained access to the master node can exploit the core key-value store, etcd, to dump secrets, impersonate cluster components, and manipulate the cluster state. Full blog: https://www.rbtsec.com/blog/kubernetes-pentesting-part-five-full-etcd-secrets-dump/ Follow Us: Discord: https://discord.gg/UnHBp9FuGK LinkedIn: https://www.linkedin.com/company/rbtsecurity/ Twitter: https://twitter.com/RBTSecurity Facebook: https://www.facebook.com/RBTSecur1ty/ GitHub: https://github.com/rbtsecurity/ Contact Us: For business inquiries and collaborations, please email us at [email protected] Educational Disclaimer: All content is intended for educational purposes only, to promote ethical hacking and security research. #Kubernetes #Pentesting #ContainerSecurity #CloudSecurity #RBTSecurity #CyberSecurity #Hacking