accuknox / k8sthreatmodeling
Threat Modeling (based on STRIDE approach) for Kubernetes systems.
☆21Updated 6 months ago
Alternatives and similar repositories for k8sthreatmodeling:
Users that are interested in k8sthreatmodeling are comparing it to the libraries listed below
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated 6 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆82Updated 3 months ago
- ☆72Updated 3 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 7 months ago
- ☆21Updated 5 months ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 3 months ago
- Kubernetes audit logging, when you don't control the control plane☆74Updated this week
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 7 months ago
- Security Alert Decoration☆27Updated this week
- Semgrep-based Policy Controller for Kubernetes☆47Updated 3 weeks ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆55Updated last month
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 2 months ago
- ☆29Updated 5 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- K8s API Honeypot with Active Defense Capabilities☆40Updated last year
- ☆25Updated 11 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆78Updated last year
- Microsoft Defender for Cloud threat matrix for Kubernetes☆25Updated 2 years ago
- ☆12Updated 4 years ago
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆14Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆31Updated 6 months ago
- ☆39Updated 5 months ago
- ☆20Updated 11 months ago
- Intent driven security automation framework☆25Updated 2 weeks ago
- OWASP Kubernetes security and compliance tool [WIP]☆106Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year