Alevsk / dvka
Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
â138Updated 3 weeks ago
Alternatives and similar repositories for dvka:
Users that are interested in dvka are comparing it to the libraries listed below
- đ§° Multi Tool Kubernetes Pentest Imageâ229Updated last week
- â176Updated 5 months ago
- â44Updated 3 years ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knâŚâ54Updated last year
- A deliberately vulnerable Kubernetes clusterâ124Updated last year
- â72Updated 3 months ago
- OWASP Kubernetes security and compliance tool [WIP]â106Updated last year
- Curating Falco rules with MITRE ATT&CK Matrixâ78Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.â82Updated 3 months ago
- Kubernetes focused container assessment and context discovery tool for penetration testingâ454Updated 10 months ago
- A curated list of resources about detecting threats and defending Kubernetes systems.â377Updated last year
- â96Updated 2 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).â81Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsâ139Updated 3 months ago
- â243Updated 7 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKSâ39Updated 7 months ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.â46Updated 11 months ago
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.â171Updated 3 months ago
- Kubernetes Stranger Dangerâ62Updated last year
- Response Engine for managing threats in your Kubernetesâ158Updated last week
- truffleproc â hunt secrets in process memory (TruffleHog & gdb mashup)â116Updated last year
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Securityâ203Updated 3 weeks ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.â53Updated 3 months ago
- â21Updated 5 months ago
- Protect against subdomain takeoverâ92Updated 11 months ago
- Discover vulnerabilities and container image misconfiguration in production environments.â55Updated last month
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"â67Updated last year
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.â30Updated 6 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrixâ58Updated last year
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.â344Updated last year