Hello Kali Linux team,

Executed an offensive security assessment of the containerized environment to identify container breakout vectors, privilege escalation paths, and lateral movement opportunities. The assessment actively analyzed the following technical attack surfaces:

• Runtime Isolation: Evaluated namespace boundaries and inspected assigned Linux kernel capabilities to identify opportunities for host-level privilege escalation.
• Host Exposure: Probed for hazardous host-to-guest exposures, focusing on misconfigured writable mounts and accessible UNIX/TCP socket configurations that could lead to host compromise.
• Credential Harvesting: Audited runtime environments for leaked secrets, passwords, and API keys exposed within environment variables.
• Resource Exhaustion: Assessed file descriptor limits and resource constraint configurations to identify vectors for local Denial of Service (DoS) attacks.

Please find the tool in https://github.com/davidvhk/nspect

Thank you for your time and hard work,
David