https://davidan.dev/tags/security/ Recent content in security on David An Hugo -- gohugo.io en-us Sun, 01 Jun 2025 00:00:00 +0000 https://davidan.dev/posts/k8s-2/ Sun, 01 Jun 2025 00:00:00 +0000 https://davidan.dev/posts/k8s-2/ In a continuation of the previous article, we explore the implementation of these different examples. Specifically, we will be covering workload separation, authentication, and other hardedning techniques. This article will have an example followed by a short explanation of what and why we should do that. We assume that the reader has a basic understanding of Kubernetes topics such as pods, service accounts, and secrets. Read Only File-Systems Read Only File System with Mounted Volume Show All Show Less spec: containers: - command: [" https://davidan.dev/posts/k8s/ Sat, 06 Jul 2024 00:00:00 +0000 https://davidan.dev/posts/k8s/ Kubernetes is now widely used for managing containerized applications. As more organizations adopt it, understanding its security aspects becomes crucial. This paper examines the key security challenges in Kubernetes and suggests ways to address them. Basic Concepts of Kubernetes Security Kubernetes operates across many computers, often in different locations. This spread-out nature makes security more complex. Kubernetes also constantly creates and removes small units of work called pods. This constant change means that old security methods designed for unchanging systems don’t work well. https://davidan.dev/posts/uiuctf/ Tue, 04 Jul 2023 00:00:00 +0000 https://davidan.dev/posts/uiuctf/ A long overdue set of writeups (solutions) for UIUCTF23. Recently I had the opportunity to help run UIUCTF 2023, a student-run capture the flag (CTF) event with some awesome folk in SIGPwny. The part I worked on mainly centered around open source intelligence (OSINT) techniques. In this post, we go over some solutions to the OSINT suite as some tips and tricks to approaching these challenges in CTFs. Designing the Challenges One of the biggest things I wanted to do while designing these challenges were to be able to tell a story along all the challenges. https://davidan.dev/posts/gpt/ Wed, 19 Apr 2023 00:00:00 +0000 https://davidan.dev/posts/gpt/ UPDATE: This article was covered in the Fortune Magazine article “Snap’s ‘My AI’ chatbot tells users it doesn’t know their location. It does.” on 04-21-23! A short excursion into the craze of ChatGPT In this article, we cover a basic introduction into LLMs, ChatGPT, and a real life example of Snapchat. ChatGPT, the newest craze in a series of innovations regarding artificial intelligence. It seems like every day we hear about a new piece of software released. https://davidan.dev/posts/pwn/ Thu, 02 Feb 2023 00:00:00 +0000 https://davidan.dev/posts/pwn/ So, how does it begin? After getting bored one day and browsing Shodan.io, one wonders what’s the worst that you can find on there? Turns out, the answer led to a 2-day bender down different rabbit holes eventually leading to this article here and a lot of vulnerabilities discovered. So let’s get started shall we? Before we do this, I do not endorse attempting to break into company systems. This post is not a tutorial or suggestion, please act ethically.