kube-security / orcaLinks
This repository contains the container image scanning tool ORCA
☆37Updated last month
Alternatives and similar repositories for orca
Users that are interested in orca are comparing it to the libraries listed below
Sorting:
- Outil de sécurité des architectures kubernetes avancées☆53Updated last week
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆235Updated 2 months ago
- Response Engine for managing threats in your Kubernetes☆162Updated this week
- ☆74Updated this week
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆47Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆141Updated 2 months ago
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆116Updated last month
- Validate the isolation posture of your container environment.☆287Updated this week
- ☆98Updated 4 months ago
- The security workflow engine!☆116Updated this week
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆22Updated 8 months ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- ☆21Updated 7 months ago
- Kubernetes audit logging, when you don't control the control plane☆81Updated this week
- Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD☆37Updated 2 weeks ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆49Updated this week
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated 8 months ago
- Scans SBOMs for vulnerabilities with Grype☆82Updated this week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- A collection of tools to improve your containerized apps security posture☆143Updated last year
- KBOM - Kubernetes Bill of Materials☆316Updated 3 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- Container Hardening Priorities Specification (CHPS)☆31Updated 2 months ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆439Updated this week
- ☆179Updated 2 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆81Updated last year
- BadRobot - Operator Security Audit Tool☆221Updated this week
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Updated last year