Lenin Alevski is a Full Stack Engineer and generalist with a lot of passion for Information Security. Lenin specializes in building and maintaining Distributed Systems, Application Security and Cloud Security in general. Lenin loves to play CTFs, contributing to open-source and writing about security and privacy on his personal blog https://www.alevsk.com
Kubernetes (In)Security Why are more and more companies moving to the Private & Hybrid Cloud? Why is everybody talking about Kubernetes? Is it good? Is it Secure? In this talk you will learn about the basics of Kubernetes and how it works, then you will explore common attack vectors used against Kubernetes infrastructure ("The threat matrix of Kubernetes") as well as protections you can put in place to mitigate risk and stop attackers (RBAC, Security Context, Network Policies, Pod Security Policies, OPA, etc.) A short hands-on experience CTF in a local Kubernetes environment, when completed with the training attendees can play it (https://github.com/Alevsk/dvka)
Mission: To boldly go where no… wait, our mission is to support Aspiring Exploit Developers, Researchers, Bug Bounty and Red Teamers to further educate and enhance the industry with well rounded individuals contributing to the adversarial aspects of offense and defense.
