openclarity / kubeclarity
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems
☆39Updated 6 months ago
Alternatives and similar repositories for kubeclarity:
Users that are interested in kubeclarity are comparing it to the libraries listed below
- Kubernetes audit logging, when you don't control the control plane☆74Updated this week
- AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.☆46Updated 11 months ago
- Runtime detection and response for malicious events in Kubernetes workloads☆44Updated last year
- Response Engine for managing threats in your Kubernetes☆159Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆84Updated 4 months ago
- K8s-Secret-Expiry-Controller is a Kubernetes operator that manages and tracks the lifespan of Kubernetes secrets.☆14Updated last year
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- A simple WebUI with latest events from Falco☆120Updated 3 weeks ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated this week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated 3 weeks ago
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- The Helm Charts OCI Proxy, will proxy and transform Helm Chart into OCI images on the fly. Address any Helm Chart as OCI image.☆123Updated last month
- Self serve cloud resources with Terraform & Kubernetes☆80Updated 2 weeks ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 8 months ago
- An Argo CD extension to enable visualization of Trivy generated vulnerability reports in Argo CD UI.☆88Updated 11 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆79Updated last year
- An Argo CD plugin to replace placeholders in Kubernetes manifests with secrets stored in Hashicorp Vault.☆112Updated this week
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- ☆72Updated this week
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated 6 months ago
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆163Updated 4 months ago
- AppArmor and Seccomp profiles for K8S images☆24Updated 5 months ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)☆43Updated this week
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.☆171Updated 3 months ago
- Helm Charts for Dependency-Track☆37Updated last week
- 🧰 Multi Tool Kubernetes Pentest Image☆230Updated 3 weeks ago
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆201Updated 2 weeks ago
- Snapshot testing tool for Helm charts☆80Updated this week
- Encrypt Kubernetes Secrets using Hashicorp Vault as the KMS Provider☆48Updated this week