Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
☆36Jan 22, 2022Updated 4 years ago
Alternatives and similar repositories for kube-knark
Users that are interested in kube-knark are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Open Source runtime scanner for Linux containers (LXD / LXC), It performs security audit checks based on CIS Linux containers Benchmark …☆26Aug 12, 2024Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆69Jan 26, 2026Updated 3 months ago
- Diagrams to visually learn Falco and its eBPF probe☆15Jun 24, 2021Updated 4 years ago
- A static code analyzer to generate network connection topology for micro-service applications☆18May 1, 2026Updated last week
- A crawler for kernel releases distributed by the major Linux distributions.☆13Oct 18, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A K8s ClusterIP HTTP monitoring library based on eBPF☆18May 23, 2021Updated 4 years ago
- LoadLibrary for offensive operations☆33Dec 14, 2021Updated 4 years ago
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Sep 26, 2023Updated 2 years ago
- ☆15May 26, 2021Updated 4 years ago
- SysFlow edge processing pipeline☆18Jan 15, 2025Updated last year
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Falco Rules helpers for VSCode☆11Jul 19, 2023Updated 2 years ago
- Visualize your Kubernetes connections.☆11Nov 27, 2023Updated 2 years ago
- Kubernetes tools in a "distroless" container☆13Oct 30, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Inject Falco and pdig into a running kubernetes pod☆13May 14, 2020Updated 5 years ago
- L7 split-routing with Envoy☆22May 31, 2021Updated 4 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- The omegaUp sandbox☆14Feb 13, 2023Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆50Sep 18, 2023Updated 2 years ago
- Kube-Anchor is a Kubernetes Admission Controller of type ValidatingWebhook to protect Kubernetes Cluster from accidental resource modific…☆33Apr 9, 2022Updated 4 years ago
- Cymothoa is a backdooring tool, that inject backdoor's shellcode directly into running applications. Stealth and lightweight...☆19Aug 24, 2015Updated 10 years ago
- This project process eBPF events into Prometheus metrics via a Go user-space application. A Grafana dashboard is included to visualize Ke…☆15Apr 22, 2025Updated last year
- A CLI tool for running Go commands with colorized output☆16Nov 3, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An experimental tool to modify YAMLs without losing (most of) comment lines.☆16Sep 25, 2022Updated 3 years ago
- 🔍 Rekor transparency log monitoring and alerting☆27Oct 2, 2023Updated 2 years ago
- Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions☆26Mar 24, 2021Updated 5 years ago
- Keyless Git signing with cosign!☆11May 12, 2022Updated 3 years ago
- ebpH (Extended BPF Process Homeostasis) monitors process behavior on your system to establish normal behavioral patterns. ebpH reports an…☆42Dec 8, 2022Updated 3 years ago
- A local LKM rootkit loader/dropper that lists available security mechanisms☆53Sep 4, 2021Updated 4 years ago
- ☆15Jan 30, 2025Updated last year
- This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filter…☆11Nov 4, 2022Updated 3 years ago
- ☆17Mar 22, 2019Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Container Virtual Service☆13Aug 10, 2022Updated 3 years ago
- An Example of shipping BPF code with your Go project☆27May 16, 2022Updated 3 years ago
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago
- Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors☆68Jul 31, 2020Updated 5 years ago
- A Prometheus Exporter for managing vulnerabilities in kubernetes by using trivy☆26Jan 30, 2022Updated 4 years ago
- If you have any questions, please open an issue.☆25Apr 6, 2022Updated 4 years ago
- Waffle is a library for integrating a Web Application Firewall (WAF) into Go applications.☆18Updated this week