kube-tarian / tarian
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right t…
☆54Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for tarian
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆35Updated 2 years ago
- ☆20Updated 6 months ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆18Updated 3 years ago
- Kubernetes offensive framework built in eBPF☆35Updated last year
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- ☆29Updated 3 years ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆24Updated 6 months ago
- mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …☆26Updated last month
- ☆15Updated 4 months ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 3 months ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- ☆60Updated last year
- Tool for reconnaissance of AWS cloud environments☆13Updated last year
- Fun tools around the EBS Direct API☆18Updated 3 years ago
- egrets monitors egress☆45Updated 4 years ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆27Updated 8 months ago
- Decision trees generated via Graphviz to inform pragmatic threat modelling.☆10Updated 3 years ago
- ☆23Updated 2 weeks ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆59Updated 8 months ago
- Runtime security plug to protect user containers☆65Updated this week
- Proof-of-Concept python script that implements DNS spoofing attack in Kubernetes environment from a pod located on a Worker server☆14Updated 3 years ago
- Kubernetes Native, Runtime Container Image Scanning☆39Updated 2 years ago
- A repository to store Rad Fingerprinting data.☆23Updated 3 months ago
- Enable Falco to read audit logs from EKS☆11Updated 3 years ago