GoogleCloudPlatform / gke-security-scenarios-demo
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
☆95Updated 7 months ago
Alternatives and similar repositories for gke-security-scenarios-demo:
Users that are interested in gke-security-scenarios-demo are comparing it to the libraries listed below
- This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…☆71Updated 7 months ago
- Implementation steps and assets for Google Cloud Anthos blueprints https://cloud.google.com/architecture/blueprints/anthos-security-blue…☆44Updated 10 months ago
- This guide demonstrates how to improve the security of your Kubernetes Engine by applying fine-grained restrictions to network communicat…☆100Updated last year
- ☆39Updated 3 years ago
- This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. S…☆163Updated 7 months ago
- Report OPA Gatekeeper audit violations in Security Command Center.☆43Updated 3 months ago
- 📦 Demo generator for Google Kubernetes Engine!☆93Updated last week
- A library of constraint templates and sample constraints for Constraint Framework tools☆226Updated 9 months ago
- This project walks you through setting up monitoring and visualizing metrics from a Kubernetes Engine cluster. The logs from the Kubernet…☆111Updated 3 years ago
- PCI on GKE Blueprint: PCI Deployable Architecture on Google Cloud and GKE☆128Updated 4 years ago
- This lab demonstrates some of the security concerns of a default Kubernetes Engine cluster configuration and the corresponding hardening …☆17Updated 5 years ago
- This project demonstrates a different upgrade procedures best suited for clusters containing stateless and stateful workloads. You will p…☆53Updated last year
- In this project, you will leverage Kubernetes Engine and Google Compute Engine to explore how Istio can manage services that reside outsi…☆53Updated last year
- ☆81Updated last year
- This project describes the steps required to deploy a sample application to Kubernetes Engine that forwards log events to Stackdriver Log…☆52Updated last year
- Anthos Config Management Examples☆72Updated 3 years ago
- This repository guides you through deploying a private GKE cluster and provides a base platform for hands-on exploration of several GKE r…☆53Updated 5 years ago
- GCP CIS 1.1.0 Benchmark InSpec Profile☆130Updated 7 months ago
- This demo provides a basic walkthrough of migrating a stateless application from running on a VM all the way to running it on Kubernetes …☆109Updated last month
- An end-to-end operating model for onboarding and continually deploying services with Anthos.☆85Updated 10 months ago
- [Deprecated] Automated Anthos Installation via Terraform for Equinix Metal with vSphere☆63Updated 6 months ago
- This project demonstrates how Istio's mesh expansion feature can be used to link services accross a VPN. The feature allows for a non-Kub…☆46Updated last year
- Handles opinionated VPC Service Controls and Access Context Manager configuration and deployments☆64Updated this week
- Take automated actions against threats and vulnerabilities.☆214Updated last year
- This demo builds two GKE Clusters and guides you through using secrets in Vault, using Kubernetes authentication from within a pod to log…☆72Updated 7 months ago
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆44Updated last week
- This project introduces you to Stackdriver's tracing feature, and provides a distributed tracing example that can serve as a basis for y…☆62Updated 7 months ago
- ☆47Updated last year
- An application to help with IP Address Management (IPAM) for Google Kubernetes Engine (GKE) clusters. Easily allows the calculation of th…☆59Updated last week
- Production-ready Spinnaker on GKE☆177Updated 10 months ago