Level Sony M.
Back to Experience

Internship - Cybersecurity Analyst – Vulnerabilities, IoT & Kubernetes

Advens

October 2023
Lyon, France

Internship preparing for Hackvens, organized by Advens, focused on Kubernetes and IoT vulnerability analysis and connecting technical flaws to operational impact.

Kubernetes IoT CTF RBAC Security Documentation
Table des matières

Missions

Prepare for Hackvens by identifying vulnerabilities in Kubernetes and IoT environments, then formalize findings into recommendations and remediation procedures.

Défis

Quickly analyze unfamiliar technical environments, separate exploitable vulnerabilities from general bad practices, and communicate risks clearly.

Technique

Kubernetes vulnerability exploitation (RBAC, secrets, privileged pods), IoT security analysis, use of offensive tools (nmap, metasploit, burp suite), network pivoting techniques.

Humain

Clear communication of technical findings, reusable documentation for other teams, rigorous analysis and prioritization based on business impact.

Autres

Understanding security challenges in cloud-native and IoT architectures, importance of defense in depth and documented remediation.

Overview

Internship preparing for Hackvens, an event organized by Advens, focused on Kubernetes and IoT vulnerabilities. The purpose of the internship was to prepare this final restitution/challenge by identifying technical flaws, connecting them to operational risks, then formalizing findings into a detection and remediation playbook.

Event Context

The context involved realistic offensive and defensive security scenarios prepared ahead of Hackvens. The goal was not only to find a flaw, but to understand its concrete impact: what it enables for an attacker, which assets are exposed, and which measures are needed to reduce the risk.

Tested Environments

Kubernetes Infrastructure

I worked on several scenarios involving vulnerable Kubernetes usage:

  • Privilege escalation via RBAC: Exploiting overly permissive permissions
  • Secret extraction: Retrieving credentials stored in Kubernetes secrets
  • Privileged pods: Using pods with elevated privileges to compromise the host node
  • Service accounts: Exploiting service accounts with excessive permissions

IoT Devices

IoT challenges included:

  • Firmware analysis to identify backdoors
  • Exploitation of unsecured protocols (MQTT, HTTP)
  • Interception and manipulation of device communications
  • Access to unprotected admin interfaces

Techniques and Tools Used

Reconnaissance and Enumeration

# Network scan with nmap
nmap -sV -sC -p- target-ip

# Kubernetes enumeration
kubectl get pods --all-namespaces
kubectl auth can-i --list

Exploitation

  • Metasploit Framework for automated exploitation
  • Burp Suite for HTTP request analysis and manipulation
  • kubectl for cluster interaction
  • Docker for image and container analysis

Documentation and Remediation

Findings were structured into a detection and remediation playbook: observable symptoms, likely causes, associated impact and priority corrective actions.

Applied Methodology

  1. Reconnaissance: Information gathering about the target
  2. Scanning: Service and vulnerability identification
  3. Exploitation: Exploiting identified flaws
  4. Impact analysis: Connecting technical flaws to operational risk
  5. Documentation: Writing a detection and remediation playbook

Lessons Learned

About Kubernetes Security

  • The importance of the principle of least privilege
  • Dangers of unsecured default configurations
  • The necessity of properly configured Network Policies
  • The importance of securing secrets and using solutions like Vault

About IoT

  • Many IoT devices lack basic security
  • Unencrypted protocols are still widely used
  • The importance of regular firmware updates
  • The need to segment the IoT network

Reflections

This experience confirmed that security must be built-in from design (Security by Design) rather than added as an afterthought. It also reminded me of the importance of staying humble - even systems that seem secure can have hidden flaws.

This experience also taught me to communicate technical discoveries effectively: a vulnerability is only useful to address when its impact, likelihood and remediation are understandable by the people who need to act.

Responsabilités

  • Identify vulnerabilities related to Kubernetes usage, including RBAC, clear-text secrets and privilege escalation scenarios.
  • Prepare the final Hackvens restitution by connecting technical flaws to operational risks through IoT attack scenarios and a detection/remediation playbook.

Assistant portfolio

Pose une question sur Sony

Mémoire locale active: l'assistant adapte ses suggestions à cette visite.