Request a Demo


Stop Kubernetes Attacks: DevOps Tactics for the Real World

Recorded on September 29, 2020

Kubernetes enables engineers to deploy with speed and scale, but this velocity comes with inevitable security risks. From permissions mistakes to infrastructure blindspots, DevSecOps teams must navigate the numerous security pitfalls inherent to containerized applications.

Join the webinar to learn the Kubernetes threat model and real-world tactics to mitigate attacks.

Security experts Jimmy Mesta and Peer Aagaard will use a lab environment to demonstrate practical ways to prevent Kubernetes-based attacks like:

  • Container breakout
  • Pod-to-pod attacks
  • Secrets compromise
  • Kubelet abuse
  • Malicious workload or impersonation
  • Role-based access control (RBAC) abuse

About the presenters:

Jimmy Mesta

Head of Security Research, Signal Sciences

Jimmy Mesta is a veteran application and infrastructure security leader with 15+ years of experience. He has spent time on both the offensive and defensive side of the industry, working to build modern, developer-friendly security solutions. Prior to Signal Sciences, Jimmy maintained a global network, consulting with companies, and delivering technical security training, research, and infrastructure around the world. He previously ran the local Santa Barbara OWASP chapter and taught Kubernetes, Docker, DevOps, mobile security, and pentesting courses for Manicode. Follow Jimmy on Twitter: @jimmesta.

Peer Aagaard

Security Engineer, Signal Sciences

Peer is a Security Engineer at Signal Sciences, where he focuses on security research with the aim of fortifying our technology and approach to preventing real-world web layer attacks. His expertise stems from his experience with vulnerability management, web application and network security, and penetration testing. Prior to Signal Sciences, Peer worked at Rapid7 for half a decade as a security consultant to enterprises.