google / gke-auditor
☆74Updated 4 years ago
Alternatives and similar repositories for gke-auditor:
Users that are interested in gke-auditor are comparing it to the libraries listed below
- Security scanning & static analysis tool☆94Updated 5 months ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- ☆28Updated 4 years ago
- Kubernetes Easter CTF☆58Updated 4 years ago
- ☆35Updated 3 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- Kubernetes Security Testing Guide☆26Updated 11 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- ☆27Updated 4 months ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆55Updated 3 weeks ago
- ☆57Updated 4 years ago
- ☆21Updated 5 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆105Updated 5 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆105Updated 2 years ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆162Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Protect against subdomain takeover☆93Updated 10 months ago
- ☆49Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Assorted tools for security-related task for git repositories☆59Updated 2 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆39Updated 4 years ago
- ☆63Updated 2 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆88Updated 2 years ago
- ☆10Updated 2 years ago
- GCP CSPM using Google Sheets☆35Updated 9 months ago