Docker Exploitation Framework

Presented at DEF CON 32 (2024), Aug. 9, 2024, 10 a.m. (105 minutes).

Docker Exploitation Framework is a cross-platform framework that is focused on attacking container environments (think Kubernetes, docker, etc). It can identify vulnerabilities, misconfigurations, and potential attack vectors. It also helps to automate different stages of a successful kill-chain through features such as: - Vulnerability scanning - Container breakouts - Pod2pod lateral movement - File layers deep inspection and extraction - Attack surface discovery and mapping - Privilege escalation, etc

Presenters:

• Emmanuel Law - Senior Staff Security Engineer
  Emmanuel Law (@libnex) has over a decade of security research experience. He has presented at various international conferences such as Black Hat USA Arsenal, Troopers, Kiwicon, Ruxcon etc. He has also released tools such as Shadow Workers for browser exploitation. He is currently working as a Senior Staff Security Engineer in San Francisco Bay Area.
• Rohit Pitke
  Rohit Pitke has been working in the security industry over a decade in various fields like application and infrastructure security, offensive security and security software development. He has presented in various conferences like AppSec USA, AppSec Rome, NullCon.

Similar Presentations:

• AppSec USA 2016 / Breaking and Fixing your ‘Docker’ ized environments
• BruCON 0x0A (2018) / Outside the Box: Breakouts and Privilege Escalation in Container Environments
• FiestaCon 2023 / Docker for Hackers