accuknox / k8sthreatmodelingLinks
Threat Modeling (based on STRIDE approach) for Kubernetes systems.
☆22Updated 8 months ago
Alternatives and similar repositories for k8sthreatmodeling
Users that are interested in k8sthreatmodeling are comparing it to the libraries listed below
Sorting:
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 8 months ago
- ☆21Updated 7 months ago
- ☆74Updated this week
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated 9 months ago
- K8s API Honeypot with Active Defense Capabilities☆40Updated last year
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 9 months ago
- ☆30Updated last week
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆56Updated 6 months ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆55Updated 5 months ago
- ☆179Updated 2 months ago
- ☆41Updated last month
- Kubernetes audit logging, when you don't control the control plane☆81Updated last week
- Cloud Security Posture security policies☆31Updated 9 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆20Updated last month
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated 8 months ago
- Generates runbooks for GuardDuty findings☆36Updated last year
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- ☆45Updated 7 months ago
- Harness the security superpowers of your cloud asset inventory☆11Updated 9 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Compares and analyzes GCP IAM roles.☆77Updated 3 months ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Updated 9 months ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆31Updated last year
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- ☆16Updated 11 months ago