OWASP / www-project-kubernetes-top-ten

Related projects: ⓘ

• ksoclabs / awesome-kubernetes-security
  A curated list of awesome Kubernetes security resources
  ☆896Updated 9 months ago
• Vinum-Security / kubernetes-security-checklist
  Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…
  ☆463Updated 2 years ago
• controlplaneio / simulator
  Kubernetes Security Training Platform - focusing on security mitigation
  ☆926Updated 2 weeks ago
• BishopFox / badPods
  A collection of manifests that will create pods with elevated privileges.
  ☆580Updated 2 years ago
• cider-security-research / top-10-cicd-security-risks
  ☆394Updated last year
• OWASP / DevSecOpsGuideline
  The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
  ☆827Updated 2 months ago
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆331Updated 8 months ago
• vchinnipilli / kubestriker
  A Blazing fast Security Auditing tool for Kubernetes
  ☆985Updated 5 months ago
• DataDog / KubeHound
  Tool for building Kubernetes attack paths
  ☆746Updated this week
• inguardians / peirates
  Peirates - Kubernetes Penetration Testing tool
  ☆1,206Updated last week
• controlplaneio / kubesec
  Security risk analysis for Kubernetes resources
  ☆1,211Updated this week
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆355Updated last year
• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆730Updated 2 months ago
• bridgecrewio / terragoat
  TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how…
  ☆1,135Updated this week
• krol3 / container-security-checklist
  Checklist for container security - devsecops practices
  ☆1,504Updated 11 months ago
• raesene / kube_security_lab
  ☆230Updated last week
• magnologan / awesome-k8s-security
  A curated list for Awesome Kubernetes Security resources
  ☆1,908Updated 11 months ago
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆478Updated last week
• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆698Updated last month
• cyberark / KubiScan
  A tool to scan Kubernetes cluster for risky permissions
  ☆1,311Updated 2 months ago
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆427Updated 3 months ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆311Updated 8 months ago
• octarinesec / kube-scan
  kube-scan: Octarine k8s cluster risk assessment tool
  ☆794Updated last year
• openclarity / openclarity
  OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure
  ☆1,315Updated this week
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆166Updated this week
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆264Updated 2 weeks ago
• cncf / financial-user-group
  💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services
  ☆298Updated 2 years ago
• myugan / awesome-cicd-security
  A curated list of awesome CI CD security resources
  ☆520Updated 2 months ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆117Updated 9 months ago
• falcosecurity / falcosidekick
  Connect Falco to your ecosystem
  ☆537Updated this week