Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
☆36Jan 22, 2022Updated 4 years ago
Alternatives and similar repositories for kube-knark
Users that are interested in kube-knark are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆69Jan 26, 2026Updated 2 months ago
- Enable Falco to read audit logs from EKS☆11Dec 13, 2020Updated 5 years ago
- Diagrams to visually learn Falco and its eBPF probe☆15Jun 24, 2021Updated 4 years ago
- A crawler for kernel releases distributed by the major Linux distributions.☆13Oct 18, 2024Updated last year
- A K8s ClusterIP HTTP monitoring library based on eBPF☆18May 23, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Final Result of the Stay Informed With Kubernetes Informers blog post: https://medium.com/firehydrant-io/stay-informed-with-kubernetes-in…☆12Mar 11, 2021Updated 5 years ago
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Sep 26, 2023Updated 2 years ago
- Go implementation of the Community ID flow hashing standard☆22Apr 17, 2025Updated last year
- A REST API to manage operator index container images (and some bundle images)☆19Apr 10, 2026Updated last week
- BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.☆59Jun 30, 2022Updated 3 years ago
- Falco Rules helpers for VSCode☆11Jul 19, 2023Updated 2 years ago
- Visualize your Kubernetes connections.☆11Nov 27, 2023Updated 2 years ago
- eBPF based TCP observability.☆260Jul 21, 2021Updated 4 years ago
- Kubernetes tools in a "distroless" container☆13Oct 30, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Inject Falco and pdig into a running kubernetes pod☆13May 14, 2020Updated 5 years ago
- Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma☆21Nov 27, 2023Updated 2 years ago
- L7 split-routing with Envoy☆22May 31, 2021Updated 4 years ago
- Shell utility to list colorfully show what processes are listening on what ports.☆19Aug 17, 2019Updated 6 years ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- The omegaUp sandbox☆14Feb 13, 2023Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆50Sep 18, 2023Updated 2 years ago
- Kube-Anchor is a Kubernetes Admission Controller of type ValidatingWebhook to protect Kubernetes Cluster from accidental resource modific…☆33Apr 9, 2022Updated 4 years ago
- Cymothoa is a backdooring tool, that inject backdoor's shellcode directly into running applications. Stealth and lightweight...☆18Aug 24, 2015Updated 10 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- This project process eBPF events into Prometheus metrics via a Go user-space application. A Grafana dashboard is included to visualize Ke…☆14Apr 22, 2025Updated 11 months ago
- A CLI tool for running Go commands with colorized output☆16Nov 3, 2021Updated 4 years ago
- An experimental tool to modify YAMLs without losing (most of) comment lines.☆16Sep 25, 2022Updated 3 years ago
- 🔍 Rekor transparency log monitoring and alerting☆27Oct 2, 2023Updated 2 years ago
- Be compatible with VPP20.01(StrongSwan 5.7.2dr2/Linux 3.10.0-862.el7.x86_64)☆19Mar 15, 2021Updated 5 years ago
- ☆17Sep 13, 2021Updated 4 years ago
- Demonstrating how you can take an action to your intrusions detected by Falco using OpenFaaS functions☆26Mar 24, 2021Updated 5 years ago
- A local LKM rootkit loader/dropper that lists available security mechanisms☆53Sep 4, 2021Updated 4 years ago
- ☆15Jan 30, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- This is the repository for the code and artifacts related to the CCS2022 paper: C2C: Fine-grained Configuration-driven System Call Filter…☆11Nov 4, 2022Updated 3 years ago
- ☆17Mar 22, 2019Updated 7 years ago
- Container Virtual Service☆13Aug 10, 2022Updated 3 years ago
- An Example of shipping BPF code with your Go project☆27May 16, 2022Updated 3 years ago
- Demo repository for running eBPF in GitHub Actions☆23Mar 27, 2025Updated last year
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago
- Kubernetes operator for Falco that allows developers to manage rules for detecting intruders and backdoors☆68Jul 31, 2020Updated 5 years ago