Secure Docker and Kubernetes —end-to-end
From supply chain to runtime: build safer images, lock down clusters, instrument logging & audit trails, and stay ahead of emerging threats.
Black Forest Shadow: A Dark Fantasy Guide to Docker and Kubernetes Security
A unique twist on container security — told through the lens of dark fantasy. Journey through the Black Forest as you master Docker and Kubernetes security concepts woven into an immersive narrative.
Flagship Workshop
Docker Commandos
A narrative-driven workshop where your team fights CVE monsters alongside 10 security commandos — learning SBOMs, attestations, hardened builds, and zero-day defense through story.
Speaking At
Workshops and presentations delivered at leading organizations and conferences.
Latest from the Blog
View all →
May 4, 2026 · 4 min read
Mini Shai-Hulud: The Next Evolution of NPM Supply Chain WormsA deep dive into the Mini Shai-Hulud attack, a sophisticated NPM worm that uses the Bun runtime to bypass security and targets developer agents for persistence.
March 31, 2026 · 4 min read
Dockerizing a Java 26 Project with Docker InitJava 26 just landed. Here's how to Dockerize a Spring Boot project from scratch using Docker Init—the first move in the Docker Commandos playbook.
March 30, 2026 · 27 min read
Docker Commandos v1.5: Asgard MissionHands-on workshop materials for the 10 Docker Commandos at Rabobank, covering SBOM generation, CVE scanning, hardened images, VEX exemptions, Docker Bake, Cosign signing, and zero-day defense.
Stay in the Loop
New books, workshop dates, and security deep-dives — straight to your inbox.
No spam. Unsubscribe anytime.