This repository contains the source material for Menacit's Kubernetes security course. It is designed to be instructor-led and collaboratively improved by the students/community.
The course is actively being developed and is currently not in a fully usable state - feedback and contributions are warmly welcomed!
Besides using Github issues to suggest changes, improvements or request clarifications, feel free to fork the repository and submit a pull request.
The course relies on scenskrack to generate PDF/HTML versions of the slides and bundle things into ZIP files. Remember to include yourself in the author section and add attribution for any images used in slides. All content included should be available under an OSI approved Creative Commons license (BY, BY-SA or CC0). For tracking of images and other large assets, the Git LFS extension is used.
PRs containing photos of cats and/or dogs will be rejected - there are already to many of them on the Internet! ;-)
During research/development of the course, several tools and supporting material was developed. The list below contain links to their dedicated repositories:
- k8s_ephemeral_mimic
- k8s_resource_audit
- k8s_crlish_authorizer
- k8s_malicious_kubeconfig
- kubernetes_introduction
- demo_apps
Initial development of this course was founded by Sweden's National Coordination Centre for Research and Innovation in Cybersecurity, the Swedish Civil Contingencies Agency and the European Union's European Cybersecurity Competence Centre.
Thanks to the Kubernetes project, the supporting FOSS developers and free culture contributors making it all possible!