Collaborate Disseminate
Targeted at the DevSecOps practitioner or platform engineer, Kubescape, the open-source Kubernetes security platform has reached version 3.0. Vulnerability scan results Kubescape 3.0 features Kubescape 3.0 adds new features that make it easier for orga… Continue reading Kubescape 3.0 elevates open-source Kubernetes security
Kubernetes, often abbreviated as K8s, is an open-source container orchestration platform that has redefined the way modern applications are developed, deployed, and managed. Born out of Google’s internal container orchestration system, Kubernetes… Continue reading The role of Kubernetes in modern app management
Considering an alternative to Kubernetes? Check out our comprehensive list of the best Kubernetes competitors and determine which one is best for your team. Continue reading Best Kubernetes Alternatives and Competitors for 2023
GitHub Actions provides a platform for continuous integration and continuous delivery (CI/CD), enabling your build, test, and deployment process automation. It allows you to establish workflows that build and test each pull request in your repository a… Continue reading Securing GitHub Actions for a safer DevOps pipeline
Check out our comprehensive list of top 6 DevOps certifications for 2023 and find the best certification to enhance your skills and knowledge in the field. Continue reading Top 6 DevOps Certifications for 2023
In 2023, a wave of new attacks targeting Kubernetes has been reported, from Dero and Monero crypto mining to Scarleteel and RBAC-Buster. In this Help Net Security video, Jimmy Mesta, CTO at KSOC, explores what it would take to protect against Kubernete… Continue reading Kubernetes attacks in 2023: What it means for the future
The attestation service is designed to allow data in confidential computing environments to interact with AI safely, as well as provide policy enforcements and audits. Continue reading Intel Innovation 2023: Attestation and Fully Homomorphic Encryption Coming to Intel Cloud Services
I have created a pod whose container has the SYS_PTRACE capability (and the SYS_ADMIN)
When I am attempting to attach to another process,
gdb -p 12345
Attaching to process 12345
ptrace: Permission denied.
Why is that?
Continue reading ptrace: Permission denied with SYS_PTRACE capability
I have created a kubernetes pod. The container has the SYS_ADMIN capability.
I can see all host’s processes.
However I can not cat /proc/1/environ.
Why is that?
Continue reading Unable to vew /proc/1/environ despite having SYS_ADMIN capability
Three high-severity Kubernetes vulnerabilities (CVE-2023-3676, CVE-2023-3893, CVE-2023-3955) could allow attackers to execute code remotely and gain control over all Windows nodes in the Kubernetes cluster. About the vulnerabilities CVE-2023-3676, disc… Continue reading Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676)