@InGuardians CTO, #Kubernetes SecurityAudit WG co-lead, 1st @CISecurity Linux lead, BastilleLinux, K8S Attack @BlackHatEvents Trainer, https://t.co/gasusgl5CK
Feb 23, 2019 • 15 tweets • 3 min read
Red Teamers know: we have to keep RTFM-ing, especially in the API-driven world. The APIs docs will give you far more access than you might imagine. 1/n
Look for the words “soon to be deprecated” and “not recommended,” especially if these API endpoints or authentication approaches were once defaults. 2/n