Kubernetes Threat Matrix

Initial access	Execution	Persistence	Privilege escalation	Defense evasion	Credential access	Discovery	Lateral movement	Collection	Impact
Using Cloud	Exec into Container	Backdoor Container	Privileged Container	Clear Container Logs	List K8s secrets	Access the K8s API server	Access cloud resources	Images from a private repository	Data Destruction
Compromised images in registry	bash/cmd in container	Writable hostPath mount	Cluster-admin binding	Delete k8s events	Mount service principal	Access Kubelet API	Container service account		Ressource hijacking
Kubeconfig file	New container	Kubernetes CronJob	hostPath mount	Pod / container name similarity	Access container service account	Network mapping	Cluster internal networking		Denial of Service
Application vulnerability	Application exploit (RCE)	Malicious admission controller	Access cloud resources	Connect from proxy server	Applications credentials in configuration files	Access Kubernetes dashboard	Applications credentials in configuration files
Exposed sensitive interfaces	SSH server running in inside container		Disable Namespacing		Access managed identity credentials	Instance metadata API	Writable volume mounts on the host
	Sidecar injection				Malicious admission controller		CoreDNS poisoning
							ARP poisoning and IP spoofing

Initial access

Execution

Persistence

Privilege escalation

Defense evasion

Credential access

Discovery

Lateral movement

Collection

Impact

Access the K8s API server

Access cloud resources

Images from a private repository

Data Destruction

Compromised images in registry

bash/cmd in container

Writable hostPath mount

Cluster-admin binding

Delete k8s events

Mount service principal

Access Kubelet API

Container service account

Pod / container name similarity

Access container service account

Network mapping

Cluster internal networking

Denial of Service

Application vulnerability

Application exploit (RCE)

Malicious admission controller

Access cloud resources

Connect from proxy server

Applications credentials in configuration files

Access Kubernetes dashboard

Applications credentials in configuration files

Exposed sensitive interfaces

SSH server running in inside container

Disable Namespacing

Access managed identity credentials

Instance metadata API

Writable volume mounts on the host

Sidecar injection

Malicious admission controller

CoreDNS poisoning

ARP poisoning and IP spoofing

Access container service account

Service account (SA) represents an application identity in Kubernetes. By default, an SA is mounted to every created pod in the cluster. Using the SA, containers in the pod can send requests to the Kubernetes API server. Attackers who get access to a pod can access the SA token (located in /var/run/secrets/kubernetes.io/serviceaccount/token) and perform actions in the cluster, according to the SA permissions. If RBAC is not enabled, the SA has unlimited permissions in the cluster. If RBAC is enabled, its permissions are determined by the RoleBindings / ClusterRoleBindings that are associated with it.

Example

Create a pod that has a ServiceAccount assigned which has relevant permissions:

apiVersion: v1
kind: Pod
metadata:
  name: my-pod
spec:
  serviceAccount: secret-reader
  containers:
  - image: nginx
    name: my-pod

$ kubectl exec -it my-pod -- cat /var/run/secrets/kubernetes.io/serviceaccount/token
eyJhbGciOiJSUzI1N...1TfYOhsf0oBcA-7B5-s2PIqtVouW7YOcw

Please note that starting with Kubernetes 1.24, tokens for service accounts are no longer bound to a secret and the above technique is only exploitable for an attacker if the mounted service account token actually has any permissions attached to it.