| Follow @lancinimarco

Kubernetes Primer for Security Professionals

A collection of resources and tutorials for security professionals who want to approach the Kubernetes ecosystem.

This is the high-level outline of the different sections:

In this post I will try to demystify the perception by which Kubernetes is believed to be too hard to even get started, by walking through the journey I undertook to get the basics first, and later to focus on the security aspects.

    • Why What You Think You Know is Probably Wrong
    • Start From Here
    • If You Want to be Production Ready
    • What About Security?
      1. Container Security
      2. Threat Modelling Orchestrator Systems
      3. Kubernetes Security

A curated list of (security) tools tailored for cloud native technologies.

    • Docker
    • Kubernetes
    • AWS
    • GCP
    • GIT

This post covers multiple deployment options for a Kubernetes lab suitable for security research.

    • Option 1 - Run Kubernetes Locally
      1. Minikube vs Docker for Mac
      2. Setup Minikube
      3. Hello World with Minikube
    • Option 2 - Deploy a Deliberately Vulnerable Cluster
      1. Run Kubernetes on a Vagrant VM
      2. Run Insecure Configurations with Kind
    • Option 3 - Deploy a Multi-Node Production Ready Kubernetes Cluster
      1. Setup Kubespray
      2. Interact with the Cluster
      3. Hello World with Kubespray
    • Option 4 - Deploy to Cloud