The post discusses authentication and authorization in Amazon Elastic Kubernetes Service (EKS). It explains how EKS authenticates requests and authorizes access using IAM. It also explores attack vectors like SSRF vulnerabilities and stealing pod identities. The defender-focused section covers preve..

Monitoring and managing Kubernetes presents unique challenges due to its dynamic and distributed nature. Traditional monitoring tools are inadequate for the complexity of modern distributed systems. Kubernetes observability requires a different approach that consolidates telemetry data, generates in..

TheSecurity Profiles Operator (SPO)is a Kubernetes feature that simplifies managing seccomp, SELinux, and AppArmor profiles. The SPO's new command-line tool, spoc, allows easy recording and testing of seccomp profiles. It can record profiles from binary invocations, run binaries with applied profile..