kondukto-io / kntrlLinks
kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this by monitoring kernel calls, and denying access as soon as your defined behaviour is detected. For more: https://kntrl.dev
☆122Updated last month
Alternatives and similar repositories for kntrl
Users that are interested in kntrl are comparing it to the libraries listed below
Sorting:
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆113Updated last month
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 10 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆173Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆103Updated last year
- The security workflow engine!☆129Updated last month
- Runtime Security Solution for your CI/CD Pipeline☆111Updated 5 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- ☆85Updated 2 weeks ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆60Updated last year
- ☆72Updated 3 weeks ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- A full insecure kubernetes application for testing security tools☆89Updated 3 weeks ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆59Updated 9 months ago
- ☆56Updated last week
- ☆114Updated 3 months ago
- ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…☆36Updated last year
- ☆103Updated 9 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆87Updated last year
- ☆182Updated 6 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated 7 months ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆190Updated 2 months ago
- boostsecurityio/poutine☆344Updated 2 weeks ago
- Kubernetes audit logging, when you don't control the control plane☆88Updated this week
- Validate the isolation posture of your container environment.☆303Updated 3 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆246Updated 2 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆37Updated 3 weeks ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆65Updated last week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆138Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last month