chen-keinan / kube-knark
Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
☆36Updated 3 years ago
Alternatives and similar repositories for kube-knark:
Users that are interested in kube-knark are comparing it to the libraries listed below
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆54Updated 4 months ago
- ☆25Updated 11 months ago
- ☆29Updated 2 months ago
- Kubernetes offensive framework built in eBPF☆37Updated 2 years ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆66Updated 4 months ago
- An query language and interactive tooling to work with SBOM data.☆14Updated 6 months ago
- ☆20Updated 11 months ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 2 weeks ago
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆37Updated 6 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 4 years ago
- A repository to store Rad Fingerprinting data.☆24Updated 8 months ago
- Dynamic Outbound Firewall Authorizer☆22Updated 3 years ago
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated last week
- ☆11Updated 2 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year
- Red team tool that emulates the SolarWinds CI compromise attack vector.☆22Updated last year
- egrets monitors egress☆45Updated 5 years ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 2 months ago
- ☆33Updated 2 months ago
- Inspect SSL/TLS traffic using eBPF☆19Updated 6 months ago
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆26Updated 4 months ago
- Clean up unused AWS resources☆13Updated 3 years ago
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- Use eBPF to inject chaos into local processes☆64Updated 7 months ago
- Collection of kbrew recipes☆10Updated 3 years ago
- Cloud Native Security Hub - Security Resources☆54Updated 5 years ago
- An open source, cloud native toolkit for threat detection and mitigation☆19Updated 5 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- Library to work with linux namespaces in go☆34Updated last year