Breaking out of the container without Zero Day — Can that happen to me?

  1. Services inside containers running as root
  2. Remote API without Authentication
  3. Containers not isolated from the host, they could reach the host on any port.

--

--

--

Penetration Tester @eBay

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How I set-up my personal domain on my NAS

How to Easily Fetch Bitfinex Historical Trades Using Python

Git, Linters and SourceLevel: how tools enable a more inclusive language and diverse culture —…

Reporting a Software Bug — The right way

Automating Release cycle activities

Principal Components Analysis (PCA) In Python In Under 5 Minutes

Travis CI for newbies? What and how of it.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Chen Cohen

Chen Cohen

Penetration Tester @eBay

More from Medium

Tartube

DNS Server Configuration in Red hat/Cent OS linux

As an engineer, administrator, operator or a developer, sometimes you need to learn certificate…

Linux Administration ( part 2 ): creating/managing groups in Linux

hackpeas, Viraj Vaishnav, veer1024, Viraj1024