Alternatives and similar repositories for kube-knark

Users that are interested in kube-knark are comparing it to the libraries listed below

• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆56Updated 8 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆38Updated 2 years ago
• raesene / eathar
  ☆44Updated 3 months ago
• raesene / teisteanas
  ☆21Updated 3 months ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆24Updated last year
• testifysec / solarsploit
  Red team tool that emulates the SolarWinds CI compromise attack vector.
  ☆24Updated last year
• uchi-mata / dostainer
  ☆29Updated 7 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆65Updated 11 months ago
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆87Updated 3 months ago
• falcosecurity / event-generator
  Generate a variety of suspect actions that are detected by Falco rulesets
  ☆107Updated 3 months ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆68Updated this week
• google / ctrdac
  ☆13Updated 7 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆66Updated this week
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• neuvector / scanner
  ☆21Updated this week
• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆160Updated last year
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆40Updated last year
• google / containerdbg
  ☆74Updated 3 months ago
• danielsagi / kube-dnsspoof
  A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.
  ☆78Updated 6 years ago
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆36Updated 10 months ago
• tks98 / snoopy
  Inspect SSL/TLS traffic using eBPF
  ☆19Updated 10 months ago
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆29Updated 6 months ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated this week
• madhuakula / docker-security-checker
  Dockerfile Security Checker using OPA Rego policies with Conftest
  ☆62Updated 3 years ago
• slashben / beat-ac-cosign-verifier
  This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
  ☆12Updated 2 years ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• loodse / kubectl-hacking
  $ kubectl hacking - my journey with kate
  ☆38Updated 4 years ago
• redcanaryco / ebpfmon
  ☆89Updated last year