chen-keinan / kube-knarkLinks
Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
☆36Updated 3 years ago
Alternatives and similar repositories for kube-knark
Users that are interested in kube-knark are comparing it to the libraries listed below
Sorting:
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆56Updated 8 months ago
- Kubernetes offensive framework built in eBPF☆38Updated 2 years ago
- ☆44Updated 3 months ago
- ☆21Updated 3 months ago
- A repository to store Rad Fingerprinting data.☆24Updated last year
- Red team tool that emulates the SolarWinds CI compromise attack vector.☆24Updated last year
- ☆29Updated 7 months ago
- Use eBPF to inject chaos into local processes☆65Updated 11 months ago
- INTERCEPT / Policy as Code Auditing & Compliance☆87Updated 3 months ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆107Updated 3 months ago
- egrets monitors egress☆46Updated 5 years ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆68Updated this week
- ☆13Updated 7 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆66Updated this week
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆21Updated this week
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆160Updated last year
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- ☆74Updated 3 months ago
- A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.☆78Updated 6 years ago
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆36Updated 10 months ago
- Inspect SSL/TLS traffic using eBPF☆19Updated 10 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆29Updated 6 months ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated this week
- Dockerfile Security Checker using OPA Rego policies with Conftest☆62Updated 3 years ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated 2 years ago
- WAF bypass PoC☆48Updated last year
- $ kubectl hacking - my journey with kate☆38Updated 4 years ago
- ☆89Updated last year