This is a site with some container security resources. It is (and probably always will be) a work in progress, but hopefully you'll find some useful information. Issues and PRs welcome on GitHub.
- Container Reading List
- Container Terms for Security people
- Security Terms for Container people
- Container CVE List
- Container/Kubernetes Security Tools
- Container Security Standards
- Container Support Lifecycles
- Container Security Talks
Resources for pentesters/redteamers and people looking to get more information about the offensive side of container security. Methodologies for testing and some tooling information.
- External Attacker Checklist
- Compromised Container Checklist
- Compromised User Credentials Checklist
- Attacker Manifests
- Container Breakout Vulnerabilities
- Kubernetes Persistence Checklist
- PCI Container Orchestration Guidance for Kubernetes
- Kubernetes Security Architecture Considerations
- Kubernetes RBAC Good Practice - This docs page gives guidance on avoiding common Kubernetes RBAC pitfalls.
- Kubernetes API Server Bypass Risks - This docs page shows places where it may be possible to bypass the Kubernetes API server, an important point as many security controls are focused on the API server.
Content that relates to container security but doesn't neatly fit in to attacker/defender buckets
you can find me on Mastodon