gunjan5 / container-securityLinks
Container π¦ Security π Best Practices Checklist π & Slides
β68Updated 4 years ago
Alternatives and similar repositories for container-security
Users that are interested in container-security are comparing it to the libraries listed below
Sorting:
- Awesome resources about Security in Kubernetesβ42Updated 2 years ago
- Discover vulnerabilities and container image misconfiguration in production environments.β56Updated last week
- Clean accounts over permissions in GCP infra at scaleβ71Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ64Updated 2 weeks ago
- A deliberately vulnerable Kubernetes clusterβ125Updated last year
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).β81Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β98Updated 5 months ago
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.β105Updated 6 months ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use β¦β66Updated 11 months ago
- Lightspin AWS IAM Vulnerability Scannerβ96Updated 4 years ago
- Kubernetes Pwnage for allβ57Updated 4 years ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.β31Updated 7 months ago
- Curating Falco rules with MITRE ATT&CK Matrixβ80Updated last year
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.β81Updated 3 years ago
- book websiteβ69Updated 3 years ago
- OWASP Kubernetes Security Testing Guideβ38Updated 9 months ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.β21Updated 7 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target containerβ106Updated 6 years ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by useβ¦β71Updated 2 years ago
- β178Updated last month
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where wβ¦β108Updated 6 months ago
- WAF bypass PoCβ48Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.β56Updated 3 years ago
- Labs for Threat Modelling training delivered by ControlPlaneβ31Updated last year
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, worβ¦β475Updated 3 years ago
- β96Updated 4 months ago
- β10Updated 3 years ago
- β12Updated 4 years ago
- a tool to audit the istio service meshβ173Updated 3 years ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.β140Updated 2 months ago