can-i gtfo?

Kubernetes RBAC Abuse Collection

View on GitHub

delete pods

Verb: delete

Resource: pods

Description: Delete a pod

Abuses

Lateral Movement

Delete pods they are assigned to an attacker controlled node. Can be combined with the abuse of 'update/patch nodes' or 'update/patch nodes/status' permissions to prevent pods being assigned to non-attacker controlled nodes.

← Back to overview