DataDog / KubeHound

Related projects ⓘ

Alternatives and complementary repositories for KubeHound

• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆336Updated 10 months ago
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆437Updated 4 months ago
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆214Updated 2 months ago
• BishopFox / badPods
  A collection of manifests that will create pods with elevated privileges.
  ☆593Updated 2 years ago
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆363Updated last year
• inguardians / peirates
  Peirates - Kubernetes Penetration Testing tool
  ☆1,240Updated 3 weeks ago
• cyberark / kubesploit
  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…
  ☆1,124Updated 3 months ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆317Updated 10 months ago
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆266Updated 2 months ago
• controlplaneio / simulator
  Kubernetes Security Training Platform - focusing on security mitigation
  ☆929Updated 2 months ago
• WithSecureLabs / IceKube
  ☆166Updated last month
• cyberark / kubeletctl
  A client for kubelet
  ☆746Updated 3 months ago
• praetorian-inc / gato
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆567Updated 2 months ago
• OWASP / www-project-kubernetes-top-ten
  OWASP Foundation Web Respository
  ☆565Updated 9 months ago
• cyberark / KubiScan
  A tool to scan Kubernetes cluster for risky permissions
  ☆1,323Updated 4 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆251Updated 2 weeks ago
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆302Updated last week
• TupleType / awesome-cicd-attacks
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆486Updated last week
• vchinnipilli / kubestriker
  A Blazing fast Security Auditing tool for Kubernetes
  ☆990Updated 7 months ago
• openclarity / openclarity
  OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure
  ☆1,346Updated this week
• deggja / netfetch
  Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.
  ☆401Updated last month
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆168Updated this week
• controlplaneio / kubesec
  Security risk analysis for Kubernetes resources
  ☆1,232Updated this week
• aquasecurity / chain-bench
  An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…
  ☆726Updated 3 months ago
• appvia / krane
  Kubernetes RBAC static analysis & visualisation tool
  ☆677Updated this week
• ksoclabs / awesome-kubernetes-security
  A curated list of awesome Kubernetes security resources
  ☆903Updated 10 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆400Updated 2 months ago
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆215Updated this week
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆166Updated last year
• falcosecurity / falcosidekick
  Connect Falco to your ecosystem
  ☆548Updated this week