Monrava / bsidesnyc2023Links
This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in Google Kubernetes Engine (GKE).
☆1Updated 7 months ago
Alternatives and similar repositories for bsidesnyc2023
Users that are interested in bsidesnyc2023 are comparing it to the libraries listed below
Sorting:
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- Kubernetes audit logging, when you don't control the control plane☆79Updated 2 weeks ago
- ☆20Updated 2 weeks ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 4 months ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated last month
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- ☆19Updated 8 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- ☆41Updated 2 years ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year
- ☆74Updated 2 weeks ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆61Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- Slack alert bot for matching Github Audit Events☆10Updated 6 months ago
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆28Updated 3 weeks ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆50Updated last year
- CLI tool for Amazon ECR☆17Updated last year
- Runtime security plug to protect user containers☆65Updated 3 weeks ago
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- ☆46Updated 8 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated this week
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 5 months ago
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- sigstore the hard way!☆111Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆66Updated 5 months ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- A kubectl plugin to visualize network policies rules.☆96Updated last year