snyk-labs / kubernetes-goof
Kubernetes Stranger Danger
☆61Updated last year
Alternatives and similar repositories for kubernetes-goof:
Users that are interested in kubernetes-goof are comparing it to the libraries listed below
- ☆93Updated last month
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- Response Engine for managing threats in your Kubernetes☆150Updated this week
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 6 months ago
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆198Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆338Updated last year
- ☆21Updated 4 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- A Kubectl plugin that can detect if any of your workloads or manifest files are mounting the docker.sock volume☆177Updated last year
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆123Updated 2 weeks ago
- book website☆67Updated 3 years ago
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆115Updated last week
- A collection of tools to improve your containerized apps security posture☆140Updated 9 months ago
- The Falco Project Community☆54Updated last month
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Official Lacework Helm Charts☆12Updated last week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Links and resources for the O'Reilly Kubernetes Security book☆42Updated 6 years ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆130Updated 2 weeks ago
- Runtime security plug to protect user containers☆65Updated last month
- A simple WebUI with latest events from Falco☆119Updated last week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆343Updated last year
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆109Updated last week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Tool for auditing RBACs in Kubernetes☆215Updated last year
- ☆175Updated 4 months ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆101Updated this week
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated last month
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago