twicke

Kubernetes has become an essential component of modern web applications. Its adoption has grown rapidly in recent years, and as penetration testers and red teamers we increasingly encounter infrastructures running on Kubernetes.

However, managing a Kubernetes cluster yourself is a significant undertaking, which is why many organizations rely on managed solutions from Azure, AWS, or GCP. This blog focuses specifically on insecure default configurations in Azure Kubernetes Service (AKS) and how attackers can exploit simple vulnerabilities to potentially compromise an entire cluster.

[…]