Alternatives and similar repositories for kube-knark:

Users that are interested in kube-knark are comparing it to the libraries listed below

• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆54Updated last month
• raesene / eathar
  ☆25Updated 8 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated last year
• ulfox / nettrust
  Dynamic Outbound Firewall Authorizer
  ☆22Updated 2 years ago
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆65Updated last month
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆36Updated 3 months ago
• uchi-mata / dostainer
  ☆29Updated 3 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 4 years ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated last week
• falcosecurity / driverkit
  Kit for building Falco drivers: kernel modules or eBPF probes
  ☆65Updated this week
• raesene / teisteanas
  ☆20Updated 8 months ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆64Updated 4 months ago
• 5GSEC / nimbus
  Intent driven security automation framework
  ☆25Updated this week
• testifysec / solarsploit
  Red team tool that emulates the SolarWinds CI compromise attack vector.
  ☆22Updated 10 months ago
• ebpffoundation / bsc
  eBPF Steering Committee (BSC)
  ☆14Updated 2 weeks ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 5 months ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆23Updated 5 months ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆36Updated 10 months ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 3 years ago
• chen-keinan / mesh-kridik
  mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …
  ☆26Updated last month
• ebpffoundation / publications
  Publications from the eBPF foundation
  ☆22Updated 2 months ago
• falcosecurity / evolution
  Evolution process of The Falco Project
  ☆48Updated this week
• darryk10 / CVE-2021-25735
  Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass
  ☆18Updated 3 years ago
• falcosecurity / pdig
  ptrace-based event producer for udig
  ☆67Updated 2 years ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆14Updated 3 months ago
• Acceis / eBPF-hide-PID
  This tool have the power to hide any PID/directory in the Linux kernel
  ☆22Updated 4 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• google / ctrdac
  ☆11Updated last month
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆67Updated this week
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 11 months ago