PaloAltoNetworks / rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
☆331Updated 8 months ago
Related projects: ⓘ
- Kubernetes focused container assessment and context discovery tool for penetration testing☆427Updated 3 months ago
- A collection of manifests that will create pods with elevated privileges.☆580Updated 2 years ago
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆166Updated this week
- Tool for auditing RBACs in Kubernetes☆212Updated 7 months ago
- ☆230Updated last week
- Tool for building Kubernetes attack paths☆746Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆311Updated 8 months ago
- A client for kubelet☆732Updated last month
- Trivy's misconfiguration scanning engine☆213Updated 5 months ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆159Updated 10 months ago
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆119Updated 2 weeks ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆64Updated 9 months ago
- 💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services☆298Updated 2 years ago
- ☆90Updated 4 months ago
- Peirates - Kubernetes Penetration Testing tool☆1,206Updated last week
- BadRobot - Operator Security Audit Tool☆214Updated this week
- Kubernetes RBAC static analysis & visualisation tool☆671Updated last week
- Falco Talon is a Response Engine for managing threats in your Kubernetes☆101Updated this week
- 🧰 Multi Tool Kubernetes Pentest Image☆207Updated 3 weeks ago
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆106Updated last month
- OWASP Foundation Web Respository☆560Updated 7 months ago
- A deliberately vulnerable Kubernetes cluster☆117Updated 9 months ago
- ☆163Updated 2 months ago
- Connect Falco to your ecosystem☆537Updated this week
- KBOM - Kubernetes Bill of Materials☆301Updated 3 months ago
- Documenting your Threat Models with HCL☆397Updated 2 weeks ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆78Updated 7 months ago
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆204Updated 3 years ago
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,112Updated 2 months ago
- Dynamic Application and API Security Testing☆189Updated last year