The Kubenomicon was born of a desire to understand more about Kubernetes from an offensive perspective.

This project was heavily inspired by the Kubernetes Threat Matrix from Microsoft which is a great starting point as it provides a framework to help understand some of the concepts in a MITRE ATTACK style framework. The Microsoft Threat Matrix was explicitly not designed to be a playbook offensive for security professionals and thus it lacks the details necessary to actually exploit (and remediate) each attack in Kubernetes cluster.

• Kubenomicon @ GitHub.
• Threat Matrix for Kubernetes @ Microsoft.
• Kubernetes Threat Matrix @ RedGuard.