kube-security / orca
This repository contains the container image scanning tool ORCA
☆36Updated last week
Alternatives and similar repositories for orca:
Users that are interested in orca are comparing it to the libraries listed below
- Outil de sécurité des architectures kubernetes avancées☆51Updated 6 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆230Updated 3 weeks ago
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆46Updated 11 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆138Updated last month
- ☆72Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- Response Engine for managing threats in your Kubernetes☆159Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆84Updated 4 months ago
- Validate the isolation posture of your container environment.☆276Updated 2 weeks ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆438Updated 2 weeks ago
- ☆177Updated 2 weeks ago
- BadRobot - Operator Security Audit Tool☆220Updated last week
- Inspect certificate authorities in container images☆233Updated this week
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆67Updated 3 weeks ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)☆43Updated this week
- KBOM - Kubernetes Bill of Materials☆315Updated last month
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆110Updated 2 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆44Updated last year
- OWASP Kubernetes security and compliance tool [WIP]☆106Updated last year
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year
- Kubernetes focused container assessment and context discovery tool for penetration testing☆456Updated 10 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated this week
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 8 months ago
- A tool for preventing the installation of malicious PyPI and npm packages☆141Updated this week
- Chaos snake for Kubernetes. Chaos engineering combined with a classic snake game.☆176Updated 2 weeks ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆21Updated 6 months ago
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and files…☆39Updated 6 months ago