Hacking Kubernetes: Threat-Driven Analysis and Defense
Martin, Andrew, Hausenblas, Michael
- 出版商: O'Reilly
- 出版日期: 2021-11-02
- 定價: $1,980
- 售價: 8.0 折 $1,584
- 語言: 英文
- 頁數: 314
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1492081736
- ISBN-13: 9781492081739
-
相關分類:
Kubernetes、駭客 Hack
立即出貨 (庫存 < 3)
買這商品的人也買了...
-
$980$774 -
$1,920$1,824 -
$680$537 -
$1,800$1,710 -
$1,700$1,700 -
$480$379 -
$1,600$1,520 -
$4,620$4,389 -
$2,030$1,929 -
$454物聯網滲透測試 (Iot Penetration Testing Cookbook)
-
$1,782Kubernetes Best Practices: Blueprints for Building Successful Applications on Kubernetes
-
$600$474 -
$1,634$1,548 -
$1,881$1,782 -
$594$564 -
$1,683Threat Modeling: A Practical Guide for Development Teams
-
$834$792 -
$1,235$1,170 -
$359$341 -
$340$323 -
$1,584Multithreaded JavaScript: Concurrency Beyond the Event Loop
-
$505Go 黑帽子 : 滲透測試編程之道
-
$2,052Software Architecture: The Hard Parts: Modern Trade-Off Analyses for Distributed Architectures (Paperback)
-
$1,485The Hardware Hacking Handbook: Breaking Embedded Security with Hardware Attacks (Paperback)
-
$474$450
商品描述
Want to run your Kubernetes workloads safely and securely? This practical book provides a threat-based guide to Kubernetes security. Each chapter examines a particular component's architecture and potential default settings and then reviews existing high-profile attacks and historical Common Vulnerabilities and Exposures (CVEs). Authors Andrew Martin and Michael Hausenblas share best-practice configuration to help you harden clusters from possible angles of attack.
This book begins with a vanilla Kubernetes installation with built-in defaults. You'll examine an abstract threat model of a distributed system running arbitrary workloads, and then progress to a detailed assessment of each component of a secure Kubernetes system.
- Understand where your Kubernetes system is vulnerable with threat modelling techniques
- Focus on pods, from configurations to attacks and defenses
- Secure your cluster and workload traffic
- Define and enforce policy with RBAC, OPA, and Kyverno
- Dive deep into sandboxing and isolation techniques
- Learn how to detect and mitigate supply chain attacks
- Explore filesystems, volumes, and sensitive information at rest
- Discover what can go wrong when running multitenant workloads in a cluster
- Learn what you can do if someone breaks in despite you having controls in place
作者簡介
Andrew Martin is CEO of ControlPlane.
Michael Hausenblas is Product Developer Advocate Amazon Web Service.