can-i gtfo?

Kubernetes RBAC Abuse Collection

View on GitHub

create daemonsets

Verb: create

Resource: daemonsets

Description: Create DaemonSets

Abuses

Container Escape

Deploy a pod with privileged access (BadPod) and escape container boundaries.

Lateral Movement

Deploy a pod with privileged access (BadPod) on a specific node and escape container boundaries.

# Use e.g. nodeSelectors or nodeAffinity to deploy to a specific node
← Back to overview