SKILL: Container Escape Techniques — Expert Attack Playbook

AI LOAD INSTRUCTION: Expert container escape techniques. Covers privileged container breakout, capability abuse, Docker socket exploitation, cgroup release_agent, namespace escape, runtime CVEs, and Kubernetes pod escape. Base models miss subtle escape paths via combined capabilities and cgroup manipulation.

0. RELATED ROUTING

Before going deep, consider loading:

• linux-privilege-escalation when you first need root inside the container before attempting escape
• kubernetes-pentesting for K8s-specific attack paths beyond pod escape
• linux-security-bypass when seccomp/AppArmor blocks your escape technique

Advanced Reference

Also load DOCKER_ESCAPE_CHAINS.md when you need:

• Step-by-step escape chains for common misconfigurations
• Docker-in-Docker escape scenarios
• Kubernetes-specific escape paths with full command sequences