kube-tarian / tarian

Related projects ⓘ

Alternatives and complementary repositories for tarian

• chen-keinan / kube-knark
  Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
  ☆35Updated 2 years ago
• raesene / teisteanas
  ☆20Updated 6 months ago
• chen-keinan / mesh-kridik
  mesh-kridik is an open-source security checker that performs various security checks on a Kubernetes cluster with istio service mesh and …
  ☆26Updated 3 weeks ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆65Updated 2 months ago
• uchi-mata / dostainer
  ☆29Updated 3 years ago
• raesene / eathar
  ☆24Updated 6 months ago
• darryk10 / CVE-2021-25735
  Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass
  ☆18Updated 3 years ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 2 months ago
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 3 months ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆35Updated last year
• vmware-archive / kube-recon
  Reconnaissance test in Kubernetes clusters
  ☆21Updated 6 years ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• Permiso-io-tools / SkyScalpel
  ☆21Updated this week
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 3 years ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated this week
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆22Updated last week
• madhuakula / docker-security-checker
  Dockerfile Security Checker using OPA Rego policies with Conftest
  ☆59Updated 2 years ago
• xebia / falco-eks-audit-bridge
  Enable Falco to read audit logs from EKS
  ☆11Updated 3 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• slashben / beat-ac-cosign-verifier
  This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
  ☆12Updated last year
• antitree / cmd_and_kubectl_demos
  ☆27Updated last week
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆55Updated 7 months ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆65Updated this week
• awslabs / k8s-network-policy-migrator
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆30Updated last year
• alcideio / iskan
  Kubernetes Native, Runtime Container Image Scanning
  ☆39Updated 2 years ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆23Updated 3 months ago
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆35Updated last month
• ekristen / libnuke
  Common Golang Packages for use by the Various Cloud Nuke Tools
  ☆28Updated this week