Attempt API server anonymous access - Test kubelet API authentication - Enumerate and abuse service account permissions - Attempt container escapes from compromised pods - Test lateral movement between namespaces