kubernetes_honeypot_adventures

Analysis of a real-world attack captured in a Kubernetes honeypot.

November 3, 2022 · 14 min · Travis

kubernetes_logs_for_responders

An overview of the Kubernetes api logs. What fields are useful, and some places where log visibility might be missing in most environments.

June 11, 2022 · 7 min · Travis

compromised_container_analysis_primer

Walkthrough of basic triaging and analysis of a container which has been compromised.

May 10, 2022 · 17 min · Travis