Madhu Akula is the creator of Kubernetes Goat, an intentionally vulnerable by design Kubernetes Cluster to learn and practice Kubernetes Security. Also published author and cloud native security researcher with an extensive experience. Also he is an active member of the international security, devops and cloud native communities (null, DevSecOps, AllDayDevOps, etc). Holds industry certifications like OSCP (Offensive Security Certified Professional), CKA (Certified Kubernetes Administrator), etc.
Madhu frequently speaks and runs training sessions at security events and conferences around the world including DEFCON (24, 26 & 27), BlackHat USA (2018 & 19), USENIX LISA (2018 & 19), O’Reilly Velocity EU 2019, GitHub Satellite 2020, Appsec EU (2018 & 19), All Day DevOps (2016, 17, 18, 19 & 20), DevSecCon (London, Singapore, Boston), DevOpsDays India, c0c0n(2017, 18), Nullcon (2018, 19), SACON 2019, Serverless Summit, null and multiple others.
His research has identified vulnerabilities in over 200+ companies and organisations including; Google, Microsoft, LinkedIn, eBay, AT&T, WordPress, NTOP and Adobe, etc and credited with multiple CVE’s, Acknowledgements and rewards. He is co-author of Security Automation with Ansible2 (ISBN-13: 978-1788394512), which is listed as a technical resource by Red Hat Ansible. Also won 1st prize for building Infrastructure Security Monitoring solution at InMobi flagship hackathon among 100+ engineering teams.
Information Technology, 2013
ANITS, Andhra University
Electronics & Communication, 2010
SVKP Polytechnic College
Leading the production security engineering for a hyper-growth online collaborative white board platform.
Working with wide variety of teams, clients and community to learn and share pragmatic security knowledge
Appsecco is a specialist application security company that ‘gets’ web security and can advise you on the best route for your business.
We provide simple solutions to problems and don’t confuse our clients with technicalities.
Every team member shares a passion for providing the best possible security solutions that meet the commercial needs and challenges of the clients and organisations we work for.
No matter where they are based they bring the same strategic and pragmatic thinking to ensure that security, operations and commercial goals are aligned to bring you the best possible results.
Appsecco is a specialist application security company that ‘gets’ web security and can advise you on the best route for your business.
We provide simple solutions to problems and don’t confuse our clients with technicalities.
Every team member shares a passion for providing the best possible security solutions that meet the commercial needs and challenges of the clients and organisations we work for.
No matter where they are based they bring the same strategic and pragmatic thinking to ensure that security, operations and commercial goals are aligned to bring you the best possible results.
Code Vigilant project is created out of the need to have a more secure open source software. It is a known fact that a large number of users use opensource software but a very few of them contribute back in terms of identifying and making these opensource software a more secure piece of software.
This project is initiated with an aim of finding flaws in open source software and making sure that we reach one of the following conclusion.
This talk is focused on why, what and how we can add security value into modern cloud native infrastructure. Organisation using micro …
Trend Micro and Benchmark bring you Container Hackfest, a 1 hour online event where certified offensive hackers attempt to break a …
Kubernetes Goat is “vulnerable by design” Kubernetes Cluster environment to practice and learn about Kubernetes Security.
In this …
In this session Madhu Akula will give his introduction to Kubernetes Goat, designed to be an intentionally vulnerable cluster …
In this session Madhu Akula will give his first public introduction to Kubernetes Goat, designed to be an intentionally vulnerable …
The Kubernetes Goat designed to be intentionally vulnerable cluster environment to learn and practice Kubernetes security.
Container with all the list of useful tools/commands while hacking Kubernetes Clusters
Dockerfile Security Checker using OPA Rego policies with Conftest
Curated list of security tools for Hackers & Builders! https://tools.tldr.run
Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Building visualisation platforms for OSINT data using open source solutions
This repository contains all the presentation, documentation and the virtual machine links for hands-on.
Command line utility for hacked-emails
An Introduction to Containers using Docker and using it for Security Automation - null Bangalore Puliya
Docker container for Markdown based Raneto Knowledgebase
null Bangalore Public Bachaav 10 December 2016 Automated Infrastructure Security Monitoring & Defence
This repository contains all the presentation, documentation and the configuration, sample logs, ansible playbook, customized dashboards and more for Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring.
Proof of concept applications which you can deploy using vagrant and ansible
An authoritative list of awesome devsecops tools with the help from community experiments and contributions. http://devsecops.org
Code Vigilant project is created out of the need to have a more secure open source software.
Data Science Command Line Toolbox in a docker container
Docker container for datasploit framework
Automating Documentation, Presentation, Knowledge base using Markdown (Zero to Hero)
This repository contains all the code, playbooks, details regarding the book on Security Automation with Ansible2.
wincmdfu project is for windows one line commands that make life easier, shortcuts and command line fu. This is combination of all tweets from @wincmdfu