lobuhi / awrbacs
AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
β46Updated 11 months ago
Alternatives and similar repositories for awrbacs:
Users that are interested in awrbacs are comparing it to the libraries listed below
- AppArmor and Seccomp profiles for K8S imagesβ24Updated 5 months ago
- π§° Multi Tool Kubernetes Pentest Imageβ230Updated 3 weeks ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specificationβ66Updated 4 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.β84Updated 4 months ago
- K8s-Secret-Expiry-Controller is a Kubernetes operator that manages and tracks the lifespan of Kubernetes secrets.β14Updated last year
- β72Updated this week
- A replacement for "kubectl exec" that works over WebSocket connections.β38Updated last year
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.β171Updated 3 months ago
- A kubectl plugin to visualize network policies rules.β96Updated last year
- Kubernetes Operator to sync secrets between different secret backends and Kubernetesβ162Updated 4 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"β67Updated last year
- A command-line tool to perform Local Health Check Probes inside Container Images (ECS, Docker)β50Updated 2 weeks ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knβ¦β54Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.β138Updated last month
- A multi tenant and multi project RBAC model implementation in Kubernetesβ26Updated 4 years ago
- Kubernetes audit logging, when you don't control the control planeβ74Updated last week
- β16Updated 9 months ago
- KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesβ¦β39Updated 6 months ago
- An Argo CD extension to enable visualization of Trivy generated vulnerability reports in Argo CD UI.β88Updated 11 months ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReportsβ60Updated this week
- Explanation on what a CRI (Container Runtime Interface) is and how to write it from scratch.β29Updated 7 months ago
- A Python script to generate a Kubernetes restarting pods reportβ26Updated last week
- Encrypt Kubernetes Secrets using Hashicorp Vault as the KMS Providerβ46Updated this week
- Response Engine for managing threats in your Kubernetesβ159Updated this week
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the resβ¦β37Updated 4 months ago
- BadRobot - Operator Security Audit Toolβ220Updated last week
- Terrap - a powerful CLI tool that scans your infrastructure and identifies any required changes.β67Updated last year
- Self serve cloud resources with Terraform & Kubernetesβ80Updated 2 weeks ago
- KubeStateWatch is a Statemonitor for k8s used to send notification with when and what exactly was changed to multiple channelsβ58Updated last month
- A kubernetes network load balancer implementationβ47Updated 2 years ago