Building and Pushing Container Images to Multiple ECR Registries with Argo Workflows

Using Argo Workflows to build container images with Kaniko and push them to different registries. This post goes over sending the image to multiple ECR repositories in different AWS partitions but it could easily be switched out with another registry (Docker, GitHub, etc.).

Using AWS EKS with IAM OIDC providers set up in two accounts, allows different pods/service accounts to assume permissions in each account.

KCSA Study Guide

When searching for Kubernetes and Cloud Native Security Associate (KCSA) study materials, I couldn’t find any that were both free and high-quality. So, I’ve created this resource to guide you through the curriculum and provide free resources for your studies.

Creating TryHackMe GitOops

This post goes over the creation of the TryHackMe room GitOops.

I’m going to go over my methodology and the technology used in creating the room.

Official GitOops Walkthrough

GitOops

This is the official walkthrough for the TryHackMe room GitOops.

Warning reading any further has spoilers 🤫

If your interested in how the room was created check out my other post Creating GitOops additionally all the code used is publicly available on GitHub.

CloudGoat SNS Secrets

Warning Spoilers Ahead!

This is a write up the CloudGoat scenario sns_secrets and was created by the one and only Tyler Ramsbey.

Another walkthrough of the scenario can be found on TryHackMe which uses the Pacu SNS modules, mines uses the AWS CLI.

At time of writing this the scenario is still a GitHub Pull Request but its ready!

TryHackMe 'Frank and Herby try again.....'

This walk through of TryHackMe room “Frank and Herby try again…..” goes over how to escape from a container to take over the underlying node.

This room is a sequel of Frank & Herby make an app which is also Kubernetes themed.