Zeerg / helix-honeypotLinks
K8s API Honeypot with Active Defense Capabilities
☆40Updated last year
Alternatives and similar repositories for helix-honeypot
Users that are interested in helix-honeypot are comparing it to the libraries listed below
Sorting:
- Automated testing, generation & manipulation of #osquery packs☆73Updated 8 months ago
- ☆27Updated last month
- ☆73Updated this week
- ☆41Updated last month
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆57Updated last year
- egrets monitors egress☆46Updated 5 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- Kubernetes Unhinged Shell 😎☆46Updated 2 years ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 8 months ago
- A repository to store Rad Fingerprinting data.☆24Updated 10 months ago
- Security Alert Decoration☆27Updated last month
- Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.☆43Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Kubernetes audit logging, when you don't control the control plane☆81Updated this week
- ☆54Updated this week
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- Serverless honeytoken 🕵🏻♂️☆79Updated 2 years ago
- GCP CSPM using Google Sheets☆36Updated 2 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆31Updated last year
- Adversary emulation for EDR/SIEM testing (macOS/Linux)☆44Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- A recon tool for GCP Service Account Keys that requires no permissions☆22Updated 2 months ago
- Compares and analyzes GCP IAM roles.☆77Updated 3 months ago
- prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.☆45Updated this week
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆22Updated 8 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆98Updated 4 months ago