Container Escapes

00 — Overview

Container Escapes

Containers are not virtual machines. The kernel is shared, and one misconfiguration is all it takes to go from inside a container to owning the host. Learn how attackers break out.

Intermediate·50 min·5 tasks

// By the end of this module

→Identify whether you are inside a Docker container

→Escape a container via a mounted docker.sock

→Exploit the --privileged flag to mount the host disk and chroot out

→Find secrets in environment variables and sensitive host mounts

// Prerequisites

Complete these before starting this module for the best experience.

Foundation · Beginner

Linux & CLI Fundamentals

45 min

→

Linux Security · Intermediate

Linux Privilege Escalation

55 min

→