How secure are your running containers? In this session, we will find out by putting them to the test. This talk is a live, two-part demonstration of a real-world container breach.

Part 1: The Attack. I will exploit a common misconfiguration in a Kubernetes-deployed application to gain initial access, escalate privileges, and attempt to break out of the container.
Part 2: The Defense. I will then show how a modern runtime security tool like the open-source project Falco can detect this malicious activity in real-time, generate alerts, and give you the visibility you need to stop an attacker in their tracks.