Alevsk / dvkaLinks
Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
β186Updated 2 weeks ago
Alternatives and similar repositories for dvka
Users that are interested in dvka are comparing it to the libraries listed below
Sorting:
- π§° Multi Tool Kubernetes Pentest Imageβ245Updated 4 months ago
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.β171Updated 7 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β109Updated 7 months ago
- β179Updated 4 months ago
- OWASP Kubernetes security and compliance tool [WIP]�β106Updated 2 years ago
- Curating Falco rules with MITRE ATT&CK Matrixβ83Updated last year
- β102Updated 6 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKSβ40Updated last year
- β46Updated 3 years ago
- Kubernetes Stranger Dangerβ64Updated last month
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knβ¦β55Updated last year
- β82Updated last month
- A deliberately vulnerable Kubernetes clusterβ128Updated last year
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this β¦β116Updated 3 months ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.β47Updated last year
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, worβ¦β479Updated 3 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).β84Updated last year
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.β55Updated 7 months ago
- A collection of tools to improve your containerized apps security postureβ145Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.β392Updated last year
- Kubernetes focused container assessment and context discovery tool for penetration testingβ464Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsβ143Updated 7 months ago
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Securityβ217Updated last week
- A full insecure kubernetes application for testing security toolsβ89Updated 4 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"β67Updated last year
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.β287Updated 11 months ago
- A tool for preventing the installation of malicious npm and PyPI packagesβ158Updated this week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Regoβ350Updated 5 months ago
- OWASP Foundation Web Respositoryβ97Updated 7 months ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.β360Updated 3 weeks ago