This week's articles
Netflix open-sourced their crisis management orchestration framework: Dispatch
! Dispatch helps effectively manage security incidents by deeply integrating with existing tools used throughout an organization (Slack, GSuite, Jira, etc.). Dispatch leverages the existing familiarity of these tools to provide orchestration instead of introducing another tool. This means you can let Dispatch focus on creating resources, assembling participants, sending out notifications, tracking tasks, and assisting with post-incident reviews; allowing you to focus on actually fixing the issue!
What should—and shouldn’t—scare you about Kubernetes
Slides of @connorgilbert's talk at BSidesSF 2020, covering some of the basic building blocks of containerized infrastructure (with an eye toward how they affect your life, or the life of your favourite dev, ops, or security team), and then going into some of the particulars of Kubernetes and how it works today (How risky is it? How badly could this go? And how easy is it to mitigate the risk, if there is one?)
Container Security – Nobody Knows What It Means But It’s Provocative
The current understanding of "container security" as a term and market is muddled, especially given containers are used by different teams in different contexts. It could mean scanning image repositories for vulnerabilities or exposed secrets, managing credentials for container deployment, or monitoring running containers for unwanted activity. This post aims to help provide some clarity around the market for all involved.
Kubernetes log aggregation
This blog post explores what it takes to build your own Kubernetes log aggregator, using a Node.js microservice as an example.
A kubernetes operator for creating isolated environments, by using segregated namespaces and RBAC for authenticated users specified in the CRD.