pentest-container-breakout

Community

Expertise in container and Kubernetes breakout methodologies

Authorinfantesromeroadrian
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill provides specialized knowledge and tools for offensive security operations related to container and Kubernetes breakout techniques.

Core Features & Use Cases

  • Container Escape Analysis: Identifies and analyzes various container escape vectors, such as Docker socket mounts, privileged containers, and cgroup release_agent abuse.
  • Kubernetes Pod Escape Techniques: Explores escape mechanisms from within a Kubernetes pod, including stolen service account tokens, privileged pod creation, and kubelet API attacks.
  • Cluster-Wide Tools and Workflows: Utilizes tools like kube-hunter, Peirates, and kubectl-who-can for comprehensive penetration testing and vulnerability assessment.
  • Cloud-Resident Cluster Specifics: Offers insights into EKS, AKS, and GKE-specific vulnerabilities and mitigation strategies.
  • Detection Pairing: Integrates with Falco rules, Kubernetes audit logs, and admission controller policies to detect and prevent escape techniques.

Quick Start

Use the pentest-container-breakout skill to analyze container escape techniques within a Kubernetes cluster.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: pentest-container-breakout
Download link: https://github.com/infantesromeroadrian/arca-agent/archive/main.zip#pentest-container-breakout

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.