Alevsk / dvka
Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
â132Updated 3 weeks ago
Alternatives and similar repositories for dvka:
Users that are interested in dvka are comparing it to the libraries listed below
- 𧰠Multi Tool Kubernetes Pentest Imageâ229Updated 7 months ago
- â175Updated 4 months ago
- â44Updated 3 years ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"â67Updated last year
- A deliberately vulnerable Kubernetes clusterâ124Updated last year
- â93Updated last month
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.â171Updated 2 months ago
- OWASP Kubernetes security and compliance tool [WIP]â106Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.â79Updated 3 months ago
- Curating Falco rules with MITRE ATT&CK Matrixâ78Updated last year
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).â81Updated last year
- â69Updated 2 months ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knâŚâ54Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.â376Updated last year
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKSâ39Updated 7 months ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.â53Updated 2 months ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.â46Updated 10 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsâ138Updated 3 months ago
- Kubernetes focused container assessment and context discovery tool for penetration testingâ452Updated 9 months ago
- Validate the isolation posture of your container environment.â262Updated 2 weeks ago
- â21Updated 4 months ago
- A full insecure kubernetes application for testing security toolsâ70Updated this week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Securityâ200Updated last week
- â239Updated 6 months ago
- Response Engine for managing threats in your Kubernetesâ152Updated this week
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use âŚâ66Updated 9 months ago
- Protect against subdomain takeoverâ93Updated 10 months ago
- BadRobot - Operator Security Audit Toolâ218Updated this week
- Kubernetes Stranger Dangerâ62Updated last year
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.â162Updated last year