Monrava / bsidesnyc2023
This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in Google Kubernetes Engine (GKE).
☆1Updated 4 months ago
Alternatives and similar repositories for bsidesnyc2023:
Users that are interested in bsidesnyc2023 are comparing it to the libraries listed below
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- ☆19Updated 5 months ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated this week
- ☆20Updated 9 months ago
- Kubernetes audit logging, when you don't control the control plane☆67Updated this week
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆57Updated this week
- ☆41Updated 2 years ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- Private Terraform Registry Manager☆43Updated 8 months ago
- Github Action to automatically update digests for container images.☆52Updated 3 months ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆61Updated this week
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆27Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆59Updated this week
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆36Updated last month
- ☆18Updated 10 months ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆80Updated 2 months ago
- Cloud Dev & Ops Devcontainer☆40Updated this week
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 8 months ago
- sigstore installation walkthrough, local☆57Updated 9 months ago
- Slack alert bot for matching Github Audit Events☆10Updated 3 months ago
- Tracking Kubernetes Operators out in the wild.☆31Updated 3 months ago
- Transparenty Immutable Container Image Tags☆20Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆48Updated 10 months ago
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆52Updated last week
- TerraDagger is a Go package for managing your infrastructure-as-code through containers.☆34Updated 8 months ago