security-testing

This file is a focused red-team / adversarial testing guide for a Kubernetes homelab. It contains explicit, operational procedures that enable reconnaissance, privilege escalation, credential theft, supply-chain manipulation, and data exfiltration. The content is not itself obfuscated malware, but it documents high-impact offensive techniques and identifies specific sensitive artifacts (static AWS key, Flux/GitHub secrets, Istio CA key). If used by an attacker with cluster access, the described steps would enable a full cluster compromise and secret exfiltration. Treat this document as high-sensitivity operational guidance: ensure it is stored and accessed only by authorized security teams, audit who can apply namespace labels, restrict access to flux-system secrets, rotate any static keys referenced, and monitor for the specific actions described (namespace labeling, HTTPRoute creations, suspicious Prometheus/Loki queries, unusual DNS patterns).