Published inFAUN — Developer Community 🐾·Feb 4, 2021Attacking Kubernetes clusters using the Kubelet APIKnock-knockin’ on kubelet’s door. From the doormat to full node access. — Through this article, we will see a Proof of Concept on how to: Find public unauthenticated kubelet APIs. Use kubelet API to do remote code execution on containers. Gain an interactive shell on a container running inside a node. Explore credentials and access the API Server from inside, with cluster-admin…Kubernetes12 min readKubernetes12 min read
Published inFAUN — Developer Community 🐾·Mar 20, 2019Trying Prometheus Operator with Helm + MinikubeAn introduction to Prometheus Operator, how to deploy it in Minikube (with helm) and configure alert notifications for Slack. — TL;DR If you are not patient and wants to skip the better part of the learning, here is your commands/files: # Minikube setup $ minikube start --kubernetes-version=v1.13.4 \ --memory=4096 \ --bootstrapper=kubeadm \ --extra-config=scheduler.address=0.0.0.0 \ --extra-config=controller-manager.address=0.0.0.0Kubernetes11 min readKubernetes11 min read
Published inFAUN — Developer Community 🐾·Feb 13, 2019Using different kubectl versions with multiple Kubernetes clustersWhen you are working with multiple Kubernetes clusters, it’s easy to mess up with contexts and run kubectl in the wrong cluster. You don’t want to contribute to the kubernetes-failure-stories, I guess. Beyond that, Kubernetes has restrictions for versioning mismatch between the client (kubectl) and server (kubernetes master), so running…Kubernetes4 min readKubernetes4 min read
