Hacking and Hardening Kubernetes Clusters by Example [I] - Brad Geesaman, Symantec
Hacking and Hardening Kubernetes Clusters by Example [I] - Brad Geesaman, Symantec While Kubernetes offers new and exciting ways to deploy and scale container-based workloads in production, many organizations may not be aware of the security risks inherent in the out-of-the-box state of most Kubernetes installations and the common practices for deploying workloads that could lead to unintentional compromise. Join Brad Geesaman, the Cyber Skills Development team lead at Symantec, on an eye-opening journey examining real compromises and sensitive data leaks that can occur inside a Kubernetes cluster, highlighting the configurations that allowed them to succeed, applying practical applications of the latest built-in security features and policies to prevent those attacks, and providing actionable steps for future detection. The hardening measures taken in response to the attacks demonstrated will include guidelines for improving configurations installed by common deployment tools, securing the sources of containers, implementing firewall and networking plugin policies, isolating workloads with namespaces and labels, controlling container security contexts, better handling of secrets and environment variables, limiting API server access, examining audit logs for malicious attack patterns, and more. About Brad Geesaman Brad was recently the Cyber Skills Development Engineering Lead at Symantec Corporation where he supported the operations and delivery of ethical hacking learning simulations on top of Kubernetes in AWS. Although he spent several years as a penetration-tester, his real passion is educating others on the real-world security risks inherent in complex infrastructure systems through demonstration followed by practical, usable advice on detection and prevention. Join us for KubeCon + CloudNativeCon in Barcelona May 20 - 23, Shanghai June 24 - 26, and San Diego November 18 - 21! Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy and all of the other CNCF-hosted projects.
Effective RBAC - Jordan Liggitt, Red Hat
Cilium Explained: eBPF-Powered Kubernetes Networking
Attacking AI - Jason Haddix - NDC Security 2026
Kubernetes Hacking: From Weak Applications to Cluster Control
DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro
Cybersecurity Architecture: Five Principles to Follow (and One to Avoid)
OpenTelemetry in Kubernetes explained!
Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!
Kubernetes Services explained | ClusterIP vs NodePort vs LoadBalancer vs Headless Service
Turing Award Winner: Disagreeing with Google, Postgres, Future Problems | Mike Stonebraker
Highly Available Kubernetes Clusters - Best Practices - Meaghan Kjelland & Karan Goel, Google
Keynote: KubeCon Opening Keynote - Kelsey Hightower, Google
![Kubernetes Tutorial for Beginners [FULL COURSE in 4 Hours]](https://i.ytimg.com/vi/X48VuDVv0do/hqdefault.jpg?sqp=-oaymwEjCNACELwBSFryq4qpAxUIARUAAAAAGAElAADIQj0AgKJDeAE=&rs=AOn4CLDNg7nINwKqigXGqrL80FN9YuTNGg)
Kubernetes Tutorial for Beginners [FULL COURSE in 4 Hours]
![Certifik8s: All You Need to Know About Certificates in Kubernetes [I] - Alexander Brand, Apprenda](https://i.ytimg.com/vi/gXz4cq3PKdg/hqdefault.jpg?sqp=-oaymwEjCNACELwBSFryq4qpAxUIARUAAAAAGAElAADIQj0AgKJDeAE=&rs=AOn4CLAeW6BBxJhyUkrkvbVn6MCp5vLXuw)
Certifik8s: All You Need to Know About Certificates in Kubernetes [I] - Alexander Brand, Apprenda
Kubernetes Storage Lingo 101 - Saad Ali, Google (Beginner Skill Level)
Kubernetes Deconstructed: Understanding Kubernetes by Breaking It Down - Carson Anderson, DOMO
Kubernetes Security Best Practices - Ian Lewis (Google)
Command and KubeCTL: Real-World Kubernetes Security for Pentesters - Mark Manning (Shmoocon 2020)
Securing Cluster Networking with Network Policies - Ahmet Balkan, Google
