Attacking Container Infrastructure: Docker and Kubernetes Weaknesses

You are here:

Home
Cyber Talks
Attacking Container Infrastructure: Docker and Kubernetes Weaknesses

Date: June 12, 2025

Time: 2:30 PM WEST | 9:30 AM EDT | 7:00 PM IST

Topic: Attacking Container Infrastructure: Docker and Kubernetes Weaknesses

Abstract: Containers play a crucial role in digital transformation, enabling rapid deployment of cloud-native applications. Though considered secure, container systems have vulnerabilities that stem from the state of their configuration. As organizations increasingly adopt containerized environments to improve scalability and agility, threat actors are evolving to exploit weaknesses within the container infrastructure. In this webinar, we will explore pen testing for Docker and Kubernetes, which act as the backbone of modern DevOps pipelines. Through live demonstrations and case studies, this session will discuss how red teams detect and exploit vulnerabilities within Docker and Kubernetes and deploy backdoors. Attendees will also gain insights into how attackers target containerized workloads and learn strategies to build more resilient, secure environments.

Key Takeaways:

Understanding containers and container security
Identifying common misconfigurations and attack vectors in Docker and Kubernetes
Applying real-world exploitation techniques in container red teaming
Recognizing container image vulnerabilities, exposed dashboards, and privilege escalation
Exploring container breach attack vectors: access to lateral movement and persistence
Implementing best practices for hardening container infrastructure and mitigating threats

Speaker:

Sergey Chubarov,Security Expert

Bio: Sergey Chubarov is a security and cloud expert and instructor with over 15 years of experience in Microsoft technologies. In his day-to-day job, he helps companies securely embrace cloud technologies. He has earned diverse certifications and recognitions such as Microsoft MVP: Security, OSCP, OSEP, eCPPT, eCPTX, Microsoft Certified Trainer, MCT Regional Lead, C|PSA, C|RT, and EC-Council’s C|EH, C|PENT, L|PT, C|CSE, C|EI, and more. He often speaks at local and international conferences like Global Azure, DEF CON, Black Hat Europe, Wild West Hackin’ Fest, Security BSides, Workplace Ninja, Midwest Management Summit, Hack in the Box, etc.

Share this Article

Train with EC-Council

Name*
Name
Email*
Phone*
Country*
Country
I'm Interested In*
I agree to the privacy policy.*
- Please confirm by checking the box below that you consent to EC-Council contacting you regarding the product interest you have indicated above. Your information will not be shared with any third party. Please see our full privacy policy here.
CAPTCHA

Certifications

Micro Learning

Attacking Container Infrastructure: Docker and Kubernetes Weaknesses

Share this Article

EC-Council

You may also like

Train with EC-Council

Cyber Talks

Recent Posts

Vulnerability Assessment And Penetration Testing (VAPT)

Network Defense And Operation

Digital Forensic

Application Security

Incident Handling And Response

Certified Ethical Hacker (C|EH)

Certified Chief Information Security Officer (C|CISO)

Computer Hacking Forensic Investigator (C|HFI)

Certified Network Defender (C|ND)

Certified Incident Handler (E|CIH)

Certified Penetration Testing Professional (C|PENT)

Certified SOC Analyst (C|SA)

Certified Cybersecurity Technician (C|CT)

Partner With Us

Have A Question

Report Grievance

Training Partner Portal

Bug Bounty Program

Community

About

Contact Us

Pressroom

About

Contact Us

Careers

Pressroom