armosec / kubecopLinks
Runtime detection and response for malicious events in Kubernetes workloads
☆45Updated last year
Alternatives and similar repositories for kubecop
Users that are interested in kubecop are comparing it to the libraries listed below
Sorting:
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated last month
- Response Engine for managing threats in your Kubernetes☆162Updated this week
- Falco plugins registry☆97Updated this week
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆44Updated 2 months ago
- Prometheus Metrics Exporter for Falco output events☆122Updated 2 months ago
- Administrative tooling for Falco☆107Updated this week
- Kubernetes audit logging, when you don't control the control plane☆81Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- A simple WebUI with latest events from Falco☆121Updated 2 months ago
- Scans SBOMs for vulnerabilities with Grype☆82Updated this week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated last week
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆202Updated this week
- Generate a variety of suspect actions that are detected by Falco rulesets☆105Updated 3 weeks ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆55Updated last month
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated last week
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆156Updated 2 weeks ago
- Runtime security plug to protect user containers☆65Updated this week
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- Falco rule repository☆126Updated this week
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆133Updated this week
- Intent driven security automation framework☆25Updated 2 months ago
- KBOM - Kubernetes Bill of Materials☆316Updated 3 months ago
- Add digests to container and init container images in Kubernetes pod and pod template specs. Use either as a mutating admission webhook, …☆147Updated 3 months ago
- A place for policy work group related proposals and prototypes.☆67Updated last month
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆91Updated 2 weeks ago
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆79Updated this week
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆49Updated last week