kube-tarian / tarian
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right t…
☆54Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for tarian
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆35Updated 2 years ago
- ☆20Updated 6 months ago
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆26Updated 3 weeks ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 2 months ago
- ☆29Updated 3 years ago
- ☆24Updated 6 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- ☆15Updated 3 months ago
- Kubernetes offensive framework built in eBPF☆35Updated last year
- Reconnaissance test in Kubernetes clusters☆21Updated 6 years ago
- egrets monitors egress☆45Updated 4 years ago
- ☆21Updated this week
- Fun tools around the EBS Direct API☆18Updated 3 years ago
- A meta-database collecting resources that compile lists of breaches☆18Updated this week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated last week
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- Enable Falco to read audit logs from EKS☆11Updated 3 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated last year
- ☆27Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆55Updated 7 months ago
- Kubernetes audit logging, when you don't control the control plane☆65Updated this week
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- Kubernetes Native, Runtime Container Image Scanning☆39Updated 2 years ago
- A repository to store Rad Fingerprinting data.☆23Updated 3 months ago
- Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry☆35Updated last month
- Common Golang Packages for use by the Various Cloud Nuke Tools☆28Updated this week