https://github.com/tigera-solutions/cc-aks-detect-block-network-attacks

In this AKS-focused workshop, you will work with Microsoft Azure and Calico Cloud to learn how to design and deploy best practices to secure your Kubernetes environment, detecting and blocking container and network-based attacks.
https://github.com/tigera-solutions/cc-aks-detect-block-network-attacks

aks azure cc regismartins security workshop

Last synced: about 1 year ago
JSON representation

In this AKS-focused workshop, you will work with Microsoft Azure and Calico Cloud to learn how to design and deploy best practices to secure your Kubernetes environment, detecting and blocking container and network-based attacks.

• Host: GitHub
• URL: https://github.com/tigera-solutions/cc-aks-detect-block-network-attacks
• Owner: tigera-solutions
• Created: 2023-05-24T18:37:00.000Z (about 3 years ago)
• Default Branch: main
• Last Pushed: 2023-06-19T19:58:24.000Z (about 3 years ago)
• Last Synced: 2025-02-15T11:19:56.732Z (over 1 year ago)
• Topics: aks, azure, cc, regismartins, security, workshop
• Homepage:
• Size: 202 KB
• Stars: 0
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Microsoft Azure: Hands-on AKS workshop  Detect and block container and network-based attacks in AKS

## Welcome

In this AKS-focused workshop, you will work with Microsoft Azure and Calico Cloud to learn how to design and deploy best practices to secure your Kubernetes environment, detecting and blocking container and network-based attacks.

Cloud-native applications require a modern approach based on the zero-trust principles of identity-based access, least privilege access, and proactively detecting threats and reducing the blast radius in case of a breach.

Calico Cloud enables fine-grained, zero-trust workload access controls between your microservices and external databases, cloud services, APIs, and other applications. It also prevents the lateral movement of threats with identity-aware segmentation that works across your workload environments, including hosts, VMs, Kubernetes components, and services.

You will come away from this workshop with an understanding of how others in your industry are securing and observing cloud-native applications in Microsoft Azure, along with best practices that you can implement in your organization.

### Time Requirements

The estimated time to complete this workshop is 60-90 minutes.

### Target Audience

- Cloud Professionals

- DevSecOps Professional

- Site Reliability Engineers (SRE)

- Solutions Architects

- Anyone interested in Calico Cloud :)

### Learning Objectives

1. Review and customize security guardrails for network-based threats

2. Configure IDS/IPS, workload-centric WAF, and DDoS protection

3. Detect zero-day attacks based on suspicious container activity using syscalls, file access, and process information 

4. Preview and enforce security policies to quarantine infected workloads

5. Visualize the security posture of your Kubernetes cluster 

## Modules

This workshop is organized in sequential modules. One module will build up on top of the previous module, so please, follow the order as proposed below.

 

Module 1 - [Getting Started](/modules/module-1-getting-started.md)  

Module 2 - [Deploy an Azure AKS cluster](/modules/module-2-deploy-aks.md)  

Module 3 - [Connect the Azure AKS cluster to Calico Cloud](/modules/module-3-connect-calicocloud.md)  

Module 4 - [Security Guardrails for Network-based Threats](/modules/module-4-security-guardrails.md)  

Module 5 - [Configuring IDS protection and Workload-Centric WAF](/modules/module-5-ids-waf.md)  

Module 6 - [Detect Zero-Day Attacks with Threat Defence](/modules/module-6-threat-defence.md)  

Module 7 - [Quarantine Infected Workloads and KSPM](/modules/module-7-quarantine-kspm.md)  

Module 8 - [Clean up](/modules/module-8-clean-up.md)  

--- 

### Useful links

- [Project Calico](https://www.tigera.io/project-calico/)

- [Calico Academy - Get Calico Certified!](https://academy.tigera.io/)

- [O’REILLY EBOOK: Kubernetes security and observability](https://www.tigera.io/lp/kubernetes-security-and-observability-ebook)

- [Calico Users - Slack](https://slack.projectcalico.org/)

**Follow us on social media**

- [LinkedIn](https://www.linkedin.com/company/tigera/)

- [Twitter](https://twitter.com/tigeraio)

- [YouTube](https://www.youtube.com/channel/UC8uN3yhpeBeerGNwDiQbcgw/)

- [Slack](https://calicousers.slack.com/)

- [Github](https://github.com/tigera-solutions/)

- [Discuss](https://discuss.projectcalico.tigera.io/)

> **Note**: The workshop provides examples and sample code as instructional content for you to consume. These examples will help you understand how to configure Calico Cloud and build a functional solution. Please note that these examples are not suitable for use in production environments.