In this blog post, we continue our story about discovering a misconfigured Kubernetes cluster during a pentest engagement conducted by our colleague @irabva , which eventually led to access to internal source code repositories. purpleshift.io/purple/2026-0…

Gained initial access to a company network… but what next? In this real pentest project our colleague @irabva shows how Kubernetes misconfigurations led to full cluster access and exposed S3 data. If you work with K8s, read this purpleshift.io/purple/2026-0…