Linux Privesc Privilege Escalation via the Docker Group: From User to Root
How membership in the docker group is equivalent to root, with PoCs for volume mounts and privileged containers, plus detection.
container-security
Linux Privesc 
Tools & Defense Kubernetes Security 101: From kubectl to RBAC and Token Theft
A practical intro to Kubernetes security: kubectl, RBAC, service account token abuse, kube-hunter scanning, and how to defend.
Tools & Defense Breaking Out: A Practical Guide to Linux Container Escape Techniques
How privileged containers, host mounts, cgroups, and CAP_SYS_ADMIN lead to container escape, plus blue-team defenses.