DataDog/managed-kubernetes-auditing-toolkit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DataDog/managed-kubernetes-auditing-toolkit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/managed-kubernetes-auditing-toolkit)

Close

DataDog / managed-kubernetes-auditing-toolkitView on GitHubMore

• External links
• Readme badge

All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.

☆370Feb 13, 2026Updated 2 weeks ago

Alternatives and similar repositories for managed-kubernetes-auditing-toolkit

Users that are interested in managed-kubernetes-auditing-toolkit are comparing it to the libraries listed below

• DataDog / workload-security-evaluator

  View on GitHub
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Oct 17, 2024Updated last year
• DataDog / KubeHound

  View on GitHub
  Tool for building Kubernetes attack paths
  ☆943Updated this week
• deggja / netfetch

  View on GitHub
  Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.
  ☆449Feb 23, 2026Updated last week
• blackberry / Falco-bypasses

  View on GitHub
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆88Jan 28, 2024Updated 2 years ago
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Feb 24, 2026Updated last week
• controlplaneio / simulator

  View on GitHub
  Kubernetes Security Training Platform - focusing on security mitigation
  ☆978Sep 2, 2024Updated last year
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated 11 months ago
• Permiso-io-tools / cloudtail

  View on GitHub
  ☆30Jan 13, 2026Updated last month
• PaloAltoNetworks / rbac-police

  View on GitHub
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆350Mar 21, 2025Updated 11 months ago
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Feb 22, 2026Updated last week
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆112Jan 2, 2025Updated last year
• aws-samples / hardeneks

  View on GitHub
  Runs checks to see if an EKS cluster follows EKS Best Practices.
  ☆938Jan 16, 2026Updated last month
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆338Feb 13, 2026Updated 2 weeks ago
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• Permiso-io-tools / LogLicker

  View on GitHub
  Tool for obfuscating and deobfuscating data.
  ☆76Mar 20, 2024Updated last year
• rad-security / kbom

  View on GitHub
  KBOM - Kubernetes Bill of Materials
  ☆324Jul 30, 2025Updated 7 months ago
• ReversecLabs / IceKube

  View on GitHub
  ☆186Feb 16, 2026Updated 2 weeks ago
• gojek / CureIAM

  View on GitHub
  Clean accounts over permissions in GCP infra at scale
  ☆71May 9, 2023Updated 2 years ago
• zoph-io / aws-security-survival-kit

  View on GitHub
  Bare minimum AWS Security Alerting and Secure by default Configuration
  ☆513May 15, 2025Updated 9 months ago
• semgr8ns / semgr8s

  View on GitHub
  Semgrep-based Policy Controller for Kubernetes
  ☆47Apr 4, 2025Updated 11 months ago
• box / kube-exec-controller

  View on GitHub
  An admission controller service and kubectl plugin to handle container drift in K8s clusters
  ☆125Dec 2, 2021Updated 4 years ago
• inguardians / peirates

  View on GitHub
  Peirates - Kubernetes Penetration Testing tool
  ☆1,424Jan 20, 2026Updated last month
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• r0binak / MTKPI

  View on GitHub
  🧰 Multi Tool Kubernetes Pentest Image
  ☆254Sep 1, 2025Updated 6 months ago
• openclarity / openclarity

  View on GitHub
  OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure
  ☆1,450Updated this week
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• appvia / krane

  View on GitHub
  Kubernetes RBAC static analysis & visualisation tool
  ☆739Feb 13, 2026Updated 2 weeks ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• awslabs / k8s-network-policy-migrator

  View on GitHub
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆32Aug 29, 2023Updated 2 years ago
• DataDog / attache

  View on GitHub
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated this week
• containers / oci-seccomp-bpf-hook

  View on GitHub
  OCI hook to trace syscalls and generate a seccomp profile
  ☆338Feb 12, 2026Updated 2 weeks ago
• jatrost / awesome-kubernetes-threat-detection

  View on GitHub
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆402Sep 2, 2023Updated 2 years ago
• DataDog / grimoire

  View on GitHub
  Generate datasets of cloud audit logs for common attacks
  ☆234Feb 13, 2026Updated 2 weeks ago
• Permiso-io-tools / bucket-shield

  View on GitHub
  ☆14Jan 8, 2026Updated last month
• tenable / cnappgoat

  View on GitHub
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆293Sep 4, 2024Updated last year
• Frichetten / aws-api-models

  View on GitHub
  A collection of documented and undocumented AWS API models
  ☆53Nov 21, 2025Updated 3 months ago
• raesene / teisteanas

  View on GitHub
  ☆29May 12, 2025Updated 9 months ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆283Nov 27, 2025Updated 3 months ago