GoogleCloudPlatform / gke-security-scenarios-demo
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
☆95Updated 8 months ago
Alternatives and similar repositories for gke-security-scenarios-demo:
Users that are interested in gke-security-scenarios-demo are comparing it to the libraries listed below
- This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…☆71Updated 8 months ago
- This guide demonstrates how to improve the security of your Kubernetes Engine by applying fine-grained restrictions to network communicat…☆100Updated last year
- Implementation steps and assets for Google Cloud Anthos blueprints https://cloud.google.com/architecture/blueprints/anthos-security-blue…☆44Updated last year
- This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. S…☆162Updated 8 months ago
- ☆38Updated 3 years ago
- 📦 Demo generator for Google Kubernetes Engine!☆93Updated 3 weeks ago
- ☆81Updated last year
- Report OPA Gatekeeper audit violations in Security Command Center.☆42Updated 4 months ago
- PCI on GKE Blueprint: PCI Deployable Architecture on Google Cloud and GKE☆128Updated 4 years ago
- This project demonstrates a different upgrade procedures best suited for clusters containing stateless and stateful workloads. You will p…☆53Updated last year
- A library of constraint templates and sample constraints for Constraint Framework tools☆228Updated 10 months ago
- In this project, you will leverage Kubernetes Engine and Google Compute Engine to explore how Istio can manage services that reside outsi…☆53Updated last year
- This project walks you through setting up monitoring and visualizing metrics from a Kubernetes Engine cluster. The logs from the Kubernet…☆111Updated 3 years ago
- This demo provides a basic walkthrough of migrating a stateless application from running on a VM all the way to running it on Kubernetes …☆109Updated last month
- This demo builds two GKE Clusters and guides you through using secrets in Vault, using Kubernetes authentication from within a pod to log…☆72Updated 8 months ago
- GCP CIS 1.1.0 Benchmark InSpec Profile☆130Updated 9 months ago
- This repository guides you through deploying a private GKE cluster and provides a base platform for hands-on exploration of several GKE r…☆53Updated 5 years ago
- An end-to-end operating model for onboarding and continually deploying services with Anthos.☆85Updated last year
- This lab demonstrates some of the security concerns of a default Kubernetes Engine cluster configuration and the corresponding hardening …☆17Updated 5 years ago
- This project describes the steps required to deploy a sample application to Kubernetes Engine that forwards log events to Stackdriver Log…☆52Updated last year
- This project presents a number of best practices for establishing network links between Kubernetes Engine clusters, and exposing cluster …☆140Updated 8 months ago
- [Deprecated] Automated Anthos Installation via Terraform for Equinix Metal with vSphere☆63Updated 8 months ago
- Anthos Config Management Examples☆72Updated 3 years ago
- Creates one or more service accounts and grants them basic roles☆124Updated 2 weeks ago
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆46Updated 2 weeks ago
- This repository hosts the terraform module that helps setup a GKE cluster and environment based on the Enterprise Multi-Tenancy Best Prac…☆26Updated 2 years ago
- This project demonstrates how a third party solution, like Datadog, can be used to monitor a Kubernetes Engine cluster and its workloads.…☆24Updated last year
- Code samples for Anthos Config Management☆89Updated last week
- Creates a regional TCP proxy load balancer for Compute Engine by using target pools and forwarding rules☆97Updated 2 weeks ago
- An application to help with IP Address Management (IPAM) for Google Kubernetes Engine (GKE) clusters. Easily allows the calculation of th…☆59Updated last month