Alternatives and similar repositories for container-security-site:

Users that are interested in container-security-site are comparing it to the libraries listed below

• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆162Updated last year
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆80Updated last year
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆174Updated 3 years ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆79Updated last month
• raesene / kube_security_lab
  ☆237Updated 5 months ago
• alexivkin / kubepwn
  Kubernetes Pwnage for all
  ☆56Updated 4 years ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆67Updated this week
• raesene / eathar
  ☆25Updated 9 months ago
• antitree / cmd_and_kubectl_demos
  ☆27Updated 3 months ago
• raesene / Cloud-Native-Security-Talks
  ☆21Updated 3 months ago
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated this week
• hacking-kubernetes / hacking-kubernetes.info
  book website
  ☆67Updated 3 years ago
• cyberark / kubernetes-rbac-audit
  Tool for auditing RBACs in Kubernetes
  ☆215Updated last year
• Alevsk / dvka
  Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
  ☆118Updated this week
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆71Updated last year
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆36Updated 10 months ago
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆343Updated last year
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆52Updated 3 weeks ago
• antitree / seccomp-diff
  ☆62Updated 3 weeks ago
• snyk-labs / kubernetes-goof
  Kubernetes Stranger Danger
  ☆61Updated last year
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆448Updated 8 months ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆121Updated last year
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆54Updated last week
• WithSecureLabs / IceKube
  ☆175Updated 2 months ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆148Updated this week
• danielsagi / kube-dnsspoof
  A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.
  ☆77Updated 5 years ago
• NodyHub / k8s-ctf-rocks
  Kubernetes Easter CTF
  ☆58Updated 4 years ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆66Updated this week