abdullahgarcia / kubernetes-for-soc
kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knowledge necessary to perform their critical duties.
β54Updated last year
Alternatives and similar repositories for kubernetes-for-soc
Users that are interested in kubernetes-for-soc are comparing it to the libraries listed below
Sorting:
- β72Updated this week
- π§° Multi Tool Kubernetes Pentest Imageβ230Updated last month
- β177Updated 3 weeks ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.β31Updated 7 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β84Updated 4 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsβ140Updated 4 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrixβ58Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.β138Updated last month
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.β73Updated last year
- AttachΓ© provides an emulation layer for Cloud Provider IMDS APIsβ53Updated 10 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CKβ¦β165Updated 7 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation oβ¦β95Updated last year
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.β54Updated 3 months ago
- β42Updated last year
- β29Updated 6 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.β110Updated 7 months ago
- Generate datasets of cloud audit logs for common attacksβ214Updated 9 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKSβ39Updated 8 months ago
- β73Updated last month
- HashiCorp-relevant rules for the Semgrep code analysis toolβ41Updated last year
- Tool for obfuscating and deobfuscating data.β70Updated last year
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.β46Updated 11 months ago
- Automated testing, generation & manipulation of #osquery packsβ72Updated 7 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accountsβ61Updated 2 years ago
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of β¦β190Updated 7 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightingsβ80Updated 2 years ago
- Generates runbooks for GuardDuty findingsβ35Updated 10 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by useβ¦β70Updated 2 years ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko geneβ¦β104Updated last year
- TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events iβ¦β36Updated last week