This presentation is for educational purpose only. The goal is to enable security team to start focusing on new emerging threat vector. In this presentation we are going to exploit container run time security and later we will learn how to protect the same with advanced threat mitigation tool (Trend Micro Deep security). We are explaining this scenario with red team and blue team security concept. Demo shows following scenarios. 1) Red Team demo: a. Exploiting containerized application over http/https (represents North-South traffic threat vector) b. One container is exploiting another container within same server (represents East-West traffic threat vector) 2) Blue team demo: Blue team has honeypot configured to catch latest threats. part 3 and 4 demo video will be showing the same. a. Protects container from getting exploited using DS IPS virtual patching (North-South traffic). b. Prevents attacker container to exploit victim container within same host (East-West traffic). Container image scanning is feature of Trend Micro Deep Security smart check. I have not covered the same. Smart check is useful to identify security threat at docker registry level. so you can mitigate security risk before image goes to production