raesene / Cloud-Native-Security-TalksLinks
☆21Updated 6 months ago
Alternatives and similar repositories for Cloud-Native-Security-Talks
Users that are interested in Cloud-Native-Security-Talks are comparing it to the libraries listed below
Sorting:
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆98Updated 5 months ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆55Updated 4 months ago
- ☆178Updated last month
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆57Updated 11 months ago
- ☆72Updated 3 weeks ago
- ☆96Updated 4 months ago
- Takes a software bill of materials and outputs provenance, and activity data from trustypkg.dev☆11Updated 2 weeks ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 9 months ago
- Kubernetes Stranger Danger☆62Updated last year
- ☆44Updated 7 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated 2 months ago
- Offensive Kubernetes Threat Matrix -- kubenomicon.com☆39Updated 4 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 7 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- ☆16Updated 10 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆80Updated last year
- ☆54Updated this week
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated last year
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- ☆52Updated 4 months ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 9 months ago
- The security workflow engine!☆115Updated this week
- Harness the security superpowers of your cloud asset inventory☆11Updated 8 months ago
- A full insecure kubernetes application for testing security tools☆87Updated last month
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆81Updated this week