k8s-security-redteam

This is an explicit red-team playbook that intentionally documents high-risk techniques (credential harvesting from service account tokens and cloud IMDS, RBAC privilege escalation, host escapes via mount/nsenter, and creation of cluster-admin bindings). There is no evidence of hidden obfuscation or embedded malicious infrastructure in the provided text, but the actions described are powerful primitives for real attacks and must only be used with explicit written authorization. From a module-review perspective: the content is legitimate instructional material for offensive testing but represents a significant security risk if misused or automated without protections. Recommend strict access controls, audit/alerting on execution of these commands, and never run them outside an approved scope.