In-person + Virtual
October 24-28
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Daylight Time (UTC -4). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Thursday, October 27 • 3:25pm - 4:00pm
Hack Back; Let’s Learn Security With CTFs! - Lewis Denham-Parry, Chainguard & Natalia Reka Ivanko, Isovalent

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

Threat actors have always been looking to attack clusters. Do you have the right security in place to detect and defeat if they are targeting yours? Or they are already in? Kubernetes has become the de facto cloud operating system and production environments have increased in maturity. So have the threats. Security Teams don’t necessarily have the expertise to detect state-of-art attack scenarios specific to cloud-native environments, like Kubernetes. So, where do they get started? Capture-The-Flag (CTF) events are a great way to learn about the techniques of both attack (Red Team) and defence (Blue Team). This talk will give you a framework for your own internal CTF events, with Red and Blue Team assessments, as a best practice for improving security in your organisation. We'll give a hands-on, live walkthrough of the top 3 state-of-art attack scenarios as CTF exercises using common open source projects like Simulator and Tetragon. Remember, the best way to learn how to detect is to first know how to attack!

avatar for Lewis Denham-Parry

Lewis Denham-Parry

Security Architect, Chainguard
Lewis enjoys helping others learn how to orchestrate the ocean of containers using Kubernetes and securing their infrastructure by teaching how to attack and defend Cloud Native infrastructure. He co-founded Cloud Native Wales, an initiative to help people learn Cloud Native technologies... Read More →
avatar for Natalia Reka Ivanko

Natalia Reka Ivanko

Security Product Lead, Isovalent
Natalia Reka Ivanko is a Security Product Lead at Isovalent with a strong background in container and cloud native security. She is passionate about building things that matter and working with kernel and software engineers to develop and apply security best practices. She is inclined... Read More →

Thursday October 27, 2022 3:25pm - 4:00pm EDT
420 AB
  Security + Identity + Policy