RichardoC / kube-audit-restLinks
Kubernetes audit logging, when you don't control the control plane
☆90Updated this week
Alternatives and similar repositories for kube-audit-rest
Users that are interested in kube-audit-rest are comparing it to the libraries listed below
Sorting:
- BadRobot - Operator Security Audit Tool☆223Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 11 months ago
- Response Engine for managing threats in your Kubernetes☆186Updated last month
- Runtime security plug to protect user containers☆66Updated this week
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆126Updated 4 years ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆69Updated last week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆129Updated 2 weeks ago
- a tool to audit the istio service mesh☆173Updated 4 years ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆61Updated this week
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆32Updated 2 years ago
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated 2 years ago
- Inspect certificate authorities in container images☆240Updated 2 weeks ago
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆213Updated last week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- A kubectl plugin to visualize network policies rules.☆99Updated last year
- Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD☆42Updated 2 months ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆55Updated this week
- EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.☆28Updated last week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆62Updated this week
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆366Updated 4 months ago
- ☆74Updated 7 months ago
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆141Updated last month
- A tool to automatically give AWS IAM users access to your Kubernetes cluster.☆51Updated 2 months ago
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆95Updated 2 months ago
- KBOM - Kubernetes Bill of Materials☆323Updated 4 months ago
- Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.☆205Updated 2 years ago
- sigstore the hard way!☆116Updated 4 months ago