microsoft / Threat-Matrix-for-Kubernetes
Microsoft Defender for Cloud threat matrix for Kubernetes
☆25Updated 2 years ago
Alternatives and similar repositories for Threat-Matrix-for-Kubernetes:
Users that are interested in Threat-Matrix-for-Kubernetes are comparing it to the libraries listed below
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Kubernetes audit logging, when you don't control the control plane☆74Updated this week
- ☆29Updated last week
- Cloud Security Posture security policies☆31Updated 7 months ago
- ☆25Updated last year
- ☆48Updated this week
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 2 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- Sample code snippets for consuming the CloudSploit API☆13Updated last year
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 6 months ago
- ☆74Updated 2 weeks ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆21Updated 6 months ago
- ☆16Updated 2 years ago
- ☆21Updated 5 months ago
- ☆16Updated 9 months ago
- ☆10Updated 2 years ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆52Updated 10 months ago
- ☆54Updated this week
- ☆20Updated last year
- Red Teaming for AI and Cloud☆25Updated this week
- Slack alert bot for matching Github Audit Events☆10Updated 5 months ago
- A tool to check the security settings of Github Organizations.☆71Updated last year
- TACOS framework structural details☆20Updated last year
- This repository includes cloud security policies for IaC and live resources.☆39Updated 10 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆14Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Updated 7 months ago