aquasecurity / kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
β7,407Updated last week
Alternatives and similar repositories for kube-bench:
Users that are interested in kube-bench are comparing it to the libraries listed below
- Hunt for security weaknesses in Kubernetes clustersβ4,853Updated last year
- Cloud Native Runtime Securityβ7,879Updated this week
- π A Kubernetes cluster resource sanitizerβ5,589Updated last week
- Validation of best practices in your Kubernetes clustersβ3,240Updated last week
- Vulnerability Static Analysis for Containersβ10,605Updated last week
- π Gatekeeper - Policy Controller for Kubernetesβ3,869Updated this week
- Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in β¦β2,893Updated last week
- KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhβ¦β3,170Updated last week
- A Kubernetes controller and tool for one-way encrypted Secretsβ8,178Updated last week
- Cost monitoring for Kubernetes workloads and cloud costsβ5,737Updated this week
- π¦ Find and install kubectl pluginsβ6,609Updated 2 weeks ago
- Validate your Kubernetes configuration files, supports multiple Kubernetes versionsβ3,194Updated last year
- Write tests against structured configuration data using the Open Policy Agent Rego query languageβ2,966Updated this week
- Kubernetes Security - Best Practice Guideβ2,708Updated 5 years ago
- Backup and migrate Kubernetes applications and their persistent volumesβ9,167Updated this week
- Superseded by https://github.com/aquasecurity/trivy-operatorβ1,366Updated 2 weeks ago
- Hubble - Network, Service & Security Observability for Kubernetes using eBPFβ3,764Updated last week
- Customization of kubernetes YAML configurationsβ11,418Updated last week
- An implementation of Netflix's Chaos Monkey for Kubernetes clustersβ3,003Updated 10 months ago
- Sonobuoy is a diagnostic tool that makes it easier to understand the state of a Kubernetes cluster by running a set of Kubernetes conformβ¦β2,957Updated 2 weeks ago
- Go library and CLIs for working with container registriesβ3,345Updated this week
- A service that analyzes docker images and scans for vulnerabilitiesβ1,586Updated 2 years ago
- Tfsec is now part of Trivyβ6,814Updated this week
- Kubectl plugin to ease sniffing on kubernetes pods using tcpdump and wiresharkβ3,318Updated 9 months ago
- Progressive delivery Kubernetes operator (Canary, A/B Testing and Blue/Green deployments)β5,062Updated last week
- Descheduler for Kubernetesβ4,816Updated this week
- Work with remote images registries - retrieving information, images, signing contentβ9,081Updated last week
- External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kβ¦β4,966Updated this week
- Highly extensible platform for developers to better understand the complexity of Kubernetes clusters.β6,268Updated 2 years ago
- Add-on agent to generate and expose cluster-level metrics.β5,690Updated this week