A Tale of Escaping a Hardened Docker container

Posted by Red Timmy Security on Aug 25

Hello,
in a recent security assessment we have managed to escape out of a
docker container by circumventing an ad-hoc reverse proxy that was
supposed to prevent abuse of “docker.sock” file exposure.

Full story here:
https://www.redtimmy.com/docker/a-tale-of-escaping-a-hardened-docker-container/

regards
Redtimmy Security

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source