This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
☆71Aug 19, 2024Updated last year
Alternatives and similar repositories for gke-application-security-demo
Users that are interested in gke-application-security-demo are comparing it to the libraries listed below
Sorting:
- This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…☆93Aug 15, 2024Updated last year
- In this project, you will leverage Kubernetes Engine and Google Compute Engine to explore how Istio can manage services that reside outsi…☆55Dec 14, 2023Updated 2 years ago
- This project demonstrates a different upgrade procedures best suited for clusters containing stateless and stateful workloads. You will p…☆53Dec 14, 2023Updated 2 years ago
- This is the shared project for two Kubernetes Engine demos☆18Dec 14, 2023Updated 2 years ago
- This project demonstrates how Istio's mesh expansion feature can be used to link services accross a VPN. The feature allows for a non-Kub…☆46Dec 14, 2023Updated 2 years ago
- This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. S…☆165Aug 19, 2024Updated last year
- This project describes the steps required to deploy a sample application to Kubernetes Engine that forwards log events to Stackdriver Log…☆51Dec 14, 2023Updated 2 years ago
- This project installs an Apache Cassandra database into a Kubernetes Engine cluster. Various scripts are contained within this project th…☆39Aug 10, 2019Updated 6 years ago
- This demo provides a basic walkthrough of migrating a stateless application from running on a VM all the way to running it on Kubernetes …☆109Feb 20, 2026Updated 2 weeks ago
- This demo builds two GKE Clusters and guides you through using secrets in Vault, using Kubernetes authentication from within a pod to log…☆72Aug 14, 2024Updated last year
- This project presents a number of best practices for establishing network links between Kubernetes Engine clusters, and exposing cluster …☆139Aug 19, 2024Updated last year
- This project walks you through setting up monitoring and visualizing metrics from a Kubernetes Engine cluster. The logs from the Kubernet…☆113Mar 4, 2022Updated 4 years ago
- This project shows how easy it is to connect an application in Kubernetes Engine to a Cloud SQL instance, using the Cloud SQL Proxy conta…☆72Sep 25, 2022Updated 3 years ago
- This lab demonstrates some of the security concerns of a default Kubernetes Engine cluster configuration and the corresponding hardening …☆17Jul 29, 2019Updated 6 years ago
- This demo aims to show what a fully-featured project running in Kubernetes Engine looks like. It includes Elasticsearch, a very popular o…☆75Aug 20, 2024Updated last year
- ☆39Aug 13, 2021Updated 4 years ago
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated 11 months ago
- GKE ingress with GCP managed certificates☆24Sep 25, 2022Updated 3 years ago
- ☆32Jan 5, 2026Updated 2 months ago
- Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.☆17Jan 5, 2026Updated 2 months ago
- Enable Falco to read audit logs from EKS☆11Dec 13, 2020Updated 5 years ago
- A GitOps workflow for multi-env deployments☆15Dec 21, 2025Updated 2 months ago
- ☆12Mar 31, 2021Updated 4 years ago
- A collection of workshop materials and labs exercises for use at client sites.☆25Jul 19, 2022Updated 3 years ago
- Implementation steps and assets for Google Cloud Anthos blueprints https://cloud.google.com/architecture/blueprints/anthos-security-blue…☆44May 3, 2024Updated last year
- 🔓 Yet Another S3 Bucket Leak☆29Aug 16, 2018Updated 7 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Sep 10, 2019Updated 6 years ago
- Istio demos and sample applications for GCP☆340Aug 15, 2023Updated 2 years ago
- Proof-of-Concept python script that implements DNS spoofing attack in Kubernetes environment from a pod located on a Worker server☆15Feb 4, 2021Updated 5 years ago
- ☆17May 1, 2024Updated last year
- Cassandra Docker optimized for Kubernetes☆13Sep 1, 2018Updated 7 years ago
- Repository for development of IDQL Policy Language☆14Nov 5, 2024Updated last year
- ☆17Feb 20, 2025Updated last year
- ☆11Sep 21, 2021Updated 4 years ago
- CLI to manage GoCD installations using docker and pipeline-as-code☆13Jul 2, 2017Updated 8 years ago
- ☆18Jul 30, 2024Updated last year
- Inject Falco and pdig into a running kubernetes pod☆13May 14, 2020Updated 5 years ago
- Demonstration of building a Kubernetes app with scaling on custom metrics☆14Oct 29, 2020Updated 5 years ago
- OpenCSPM Community Controls☆14May 18, 2021Updated 4 years ago