BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.securityfest.com//2026//talk//LCMPBH
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-2026-LCMPBH@cfp.securityfest.com
DTSTART;TZID=CET:20260528T113000
DTEND;TZID=CET:20260528T121000
DESCRIPTION:This session moves beyond initial cluster access to explore a h
 ighly stealthy persistence vector: the weaponization of Mutating Admission
  Controllers. While typically used for security policy enforcement\, these
  controllers can be subverted to inject malicious sidecars or modify pod s
 pecs in real-time without altering original deployment manifests. We will 
 demonstrate how an attacker can maintain a "ghost" presence that survives 
 standard audits\, image updates\, and pod restarts\, effectively turning t
 he Kubernetes control plane against itself.
DTSTAMP:20260625T183741Z
LOCATION:Main Stage
SUMMARY:Abusing Mutating Admission Webhooks for Stealthy Cluster Dominance 
 - Nikita Verma\, Harshita Varma
URL:https://cfp.securityfest.com/2026/talk/LCMPBH/
END:VEVENT
END:VCALENDAR