Alternatives and similar repositories for kube-knark

Users that are interested in kube-knark are comparing it to the libraries listed below

• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆56Updated 6 months ago
• raesene / eathar
  ☆41Updated last month
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• testifysec / solarsploit
  Red team tool that emulates the SolarWinds CI compromise attack vector.
  ☆24Updated last year
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆37Updated 8 months ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆40Updated last year
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆24Updated 10 months ago
• uchi-mata / dostainer
  ☆29Updated 4 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆14Updated 8 months ago
• raesene / teisteanas
  ☆20Updated last month
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆65Updated this week
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆67Updated 6 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆64Updated 9 months ago
• google / ctrdac
  ☆11Updated 4 months ago
• ulfox / nettrust
  Dynamic Outbound Firewall Authorizer
  ☆22Updated 3 years ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated 3 weeks ago
• tks98 / snoopy
  Inspect SSL/TLS traffic using eBPF
  ☆19Updated 8 months ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆28Updated 4 months ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• falcosecurity / event-generator
  Generate a variety of suspect actions that are detected by Falco rulesets
  ☆105Updated last month
• philips-labs / spiffe-vault
  Integrates Spiffe and Vault to have secretless authentication
  ☆89Updated this week
• ebpffoundation / publications
  Publications from the eBPF foundation
  ☆23Updated 7 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated last month
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated last month
• pjbgf-archives / gosystract
  A lightweight CLI tool that finds system calls being called inside golang applications.
  ☆31Updated 3 years ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆46Updated last year
• kevholditch / vacuum
  Clean up unused AWS resources
  ☆13Updated 3 years ago
• xyproto / ainur
  Detect compiler names and versions from ELF files
  ☆27Updated last month