Alternatives and similar repositories for kubernetes-goof

Users that are interested in kubernetes-goof are comparing it to the libraries listed below

• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆107Updated 7 months ago
• raesene / container-security-site
  ☆100Updated 6 months ago
• Alevsk / dvka
  Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
  ☆150Updated this week
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆242Updated 3 months ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated 11 months ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆354Updated 3 months ago
• ReversecLabs / IceKube
  ☆179Updated 3 months ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆83Updated last year
• hacking-kubernetes / hacking-kubernetes.info
  book website
  ☆70Updated 3 years ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated 2 years ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆55Updated 6 months ago
• raesene / eathar
  ☆42Updated 2 months ago
• raesene / Cloud-Native-Security-Talks
  ☆21Updated last week
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆82Updated last year
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆212Updated this week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆83Updated this week
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆171Updated 6 months ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆167Updated this week
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆125Updated this week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• cyberark / kubernetes-rbac-audit
  Tool for auditing RBACs in Kubernetes
  ☆222Updated last year
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆318Updated this week
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆346Updated 4 months ago
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆25Updated 9 months ago
• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆161Updated last year
• koslib / awesome-containerized-security
  A collection of tools to improve your containerized apps security posture
  ☆144Updated last year
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆127Updated last year
• lobuhi / awrbacs
  AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
  ☆47Updated last year