ioc[.]one - OSINT Cyber Threat Intelligence Database

Kubernetes RBAC 最佳安全实践 | CTF导航

Tags

attack-pattern:

Server - T1583.004 Server - T1584.004 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	4886137e-0fd8-42ad-937e-1f0110d460ec
Fingerprint	ae9950ebf623bb12
Analysis status	DONE
Considered CTI value	-2
Text language
Published	Oct. 12, 2024, midnight
Added to db	Oct. 19, 2024, 5:12 a.m.
Last updated	Nov. 17, 2024, 11:40 p.m.
Headline	Kubernetes RBAC 最佳安全实践
Title	Kubernetes RBAC 最佳安全实践 \| CTF导航
Detected Hints/Tags/Attributes	17/1/18

Source URLs

	Redirection	Url
Details	Source	https://www.ctfiot.com/210737.html

URL Provider

Details	Provider	Source level domain
Details	ctfiot.com	www.ctfiot.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	426	✔	CTF导航	https://www.ctfiot.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	19		rbac.authorization.k8s.io
Details	Domain	15		metadata.name
Details	Domain	71		kubernetes.io
Details	Domain	4128		github.com
Details	Domain	50		cloud.google.com
Details	Domain	8		www.aquasec.com
Details	Domain	3		orca.security
Details	Domain	110		owasp.org
Details	Github username	1		paloaltonetworks
Details	Url	1		https://kubernetes.io/docs/reference/access-authn-authz
Details	Url	1		https://www.paloaltonetworks.com/apps/pan/public/downloadresource?pagepath=
Details	Url	1		https://github.com/paloaltonetworks/rbac-police/tree/main/lib
Details	Url	2		https://cloud.google.com/kubernetes-engine/docs/best-practices/rbac
Details	Url	1		https://www.aquasec.com/blog/leveraging-kubernetes-rbac-to-backdoor-clusters
Details	Url	1		https://orca.security/resources/blog/sys-all-google-kubernetes-engine-risk
Details	Url	1		https://cloud.google.com/anthos/clusters/docs/security-bulletins?hl=zh
Details	Url	1		https://owasp.org/www-project-kubernetes-top-ten
Details	Url	1		https://kubernetes.io/docs/concepts/security/rbac-good-practices/#privilege