All challenges

Split Horizon

A Kubernetes team split a sensitive diagnostics endpoint away from the normal access path after an incident review. The bastion account can see only node-level metadata.

You have shell access to a bastion inside the lab. Map the network from what the nodes reveal, discover the hidden endpoint through DNS, and reach it without creating any Kubernetes resources.

Good luck!

Mohit Gupta / Skybound Avatar

Author

Mohit Gupta / Skybound

"There are a lot of weird quirks with Kubernetes and containers in general. This challenge shows a nice fun one. I've used variations of this technique on a client engagement to get to some containers that I shouldn't have been able to reach as part of a larger attack path."

Terminal