Alternatives and similar repositories for k8sthreatmodeling:

Users that are interested in k8sthreatmodeling are comparing it to the libraries listed below

• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆30Updated 6 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆82Updated 3 months ago
• antitree / seccomp-diff
  ☆72Updated 3 months ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆39Updated 7 months ago
• raesene / Cloud-Native-Security-Talks
  ☆21Updated 5 months ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆53Updated 3 months ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆74Updated this week
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 7 months ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated this week
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 3 weeks ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated last month
• abdullahgarcia / kubernetes-for-soc
  kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…
  ☆54Updated last year
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆28Updated 2 months ago
• Permiso-io-tools / cloudtail
  ☆29Updated 5 months ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆38Updated last year
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆81Updated last year
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆40Updated last year
• raesene / eathar
  ☆25Updated 11 months ago
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆78Updated last year
• microsoft / Threat-Matrix-for-Kubernetes
  Microsoft Defender for Cloud threat matrix for Kubernetes
  ☆25Updated 2 years ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training
  ☆12Updated 4 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated last year
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆31Updated 6 months ago
• Permiso-io-tools / SkyScalpel
  ☆39Updated 5 months ago
• raesene / teisteanas
  ☆20Updated 11 months ago
• 5GSEC / nimbus
  Intent driven security automation framework
  ☆25Updated 2 weeks ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated last year
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• awslabs / k8s-network-policy-migrator
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆30Updated last year