Madhu Akula is a pragmatic security leader and creator of Kubernetes Goat, an intentionally vulnerable by design Kubernetes Cluster to learn and practice Kubernetes Security. Also published author and cloud native security architect with an extensive experience. Also he is an active member of the international security, devops and cloud native communities (null, DevSecOps, AllDayDevOps, AWS, CNCF, USENIX, OWASP, etc). Holds industry certifications like OSCP (Offensive Security Certified Professional), CKA (Certified Kubernetes Administrator), CKS (Certified Kubernetes Security Specialist), etc.
Madhu frequently speaks and runs training sessions at security events and conferences around the world including DEFCON (24, 26, 27, 28, 29, 30), BlackHat (2018, 19, 21, 22 & 23), USENIX LISA (2018, 19 & 21), SANS Cloud Security Summit 2021 & 2022, O’Reilly Velocity EU 2019, GitHub Satellite 2020, Appsec EU (2018, 19 & 22), All Day DevOps (2016, 17, 18, 19, 20, 21 & 22), DevSecCon (London, Singapore, Boston), DevOpsDays India, c0c0n(2017, 18 & 20), Nullcon (2018, 19, 21 & 22), SACON, Serverless Summit, null and multiple others.
His research has identified vulnerabilities in over 200+ companies and organisations including; Google, Microsoft, LinkedIn, eBay, AT&T, WordPress, NTOP and Adobe, etc and credited with multiple CVE’s, Acknowledgements and rewards. He is co-author of Security Automation with Ansible2 (ISBN-13: 978-1788394512), which is listed as a technical resource by Red Hat Ansible. He is the technical reviewer for Learn Kubernetes Security, Practical Ansible2 books by Packt Pub. Also won 1st prize for building Infrastructure Security Monitoring solution at InMobi flagship hackathon among 100+ engineering teams.
Information Technology
ANITS, Andhra University
Electronics & Communications Engineering
SVKP Polytechnic College
Leading & building the product security engineering for a hyper-growth online collaborative whiteboard platform. Things happened at Miro since I joined 😊
Worked with wide variety of teams, clients and community to learn and share pragmatic security knowledge
Joined as a 2nd member of the company. Read More
Appsecco is a specialist application security company that ‘gets’ web security and can advise you on the best route for your business.
We provide simple solutions to problems and don’t confuse our clients with technicalities.
Every team member shares a passion for providing the best possible security solutions that meet the commercial needs and challenges of the clients and organisations we work for.
No matter where they are based they bring the same strategic and pragmatic thinking to ensure that security, operations and commercial goals are aligned to bring you the best possible results.
Joined as a 1st member in the Fortune 1 Network Security team in India and worked collaboratively with the USA team and other teams around the globe.
Code Vigilant project is created out of the need to have a more secure open source software. It is a known fact that a large number of users use opensource software but a very few of them contribute back in terms of identifying and making these opensource software a more secure piece of software.
This project is initiated with an aim of finding flaws in open source software and making sure that we reach one of the following conclusion.
Cloud Native Security Playground. Coming soon!
The Kubernetes Goat designed to be intentionally vulnerable cluster environment to learn and practice Kubernetes security.
Container with all the list of useful tools/commands while hacking Kubernetes Clusters
Dockerfile Security Checker using OPA Rego policies with Conftest
Curated list of security tools for Hackers & Builders! https://tools.tldr.run
Training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Building visualisation platforms for OSINT data using open source solutions
This repository contains all the presentation, documentation and the virtual machine links for hands-on.
Command line utility for hacked-emails
An Introduction to Containers using Docker and using it for Security Automation - null Bangalore Puliya
Docker container for Markdown based Raneto Knowledgebase
null Bangalore Public Bachaav 10 December 2016 Automated Infrastructure Security Monitoring & Defence
This repository contains all the presentation, documentation and the configuration, sample logs, ansible playbook, customized dashboards and more for Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring.
Proof of concept applications which you can deploy using vagrant and ansible
Training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
Code Vigilant project is created out of the need to have a more secure open source software.
Data Science Command Line Toolbox in a docker container
Docker container for datasploit framework
Automating Documentation, Presentation, Knowledge base using Markdown (Zero to Hero)
This repository contains all the code, playbooks, details regarding the book on Security Automation with Ansible2.
wincmdfu project is for windows one line commands that make life easier, shortcuts and command line fu. This is combination of all tweets from @wincmdfu