snyk / leaky-vessels-static-detector
Static detection tool for runc and Docker "Leaky Vessels" vulnerabilities
☆94Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for leaky-vessels-static-detector
- Leaky Vessels Dynamic Detector☆98Updated 5 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆70Updated last year
- ☆74Updated 3 months ago
- Runtime detection and response for malicious events in Kubernetes workloads☆38Updated 8 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆35Updated 7 months ago
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆101Updated last month
- Kubernetes offensive framework built in eBPF☆35Updated last year
- ☆24Updated 6 months ago
- Kubernetes (k8s) admission controller webhook based on Casbin☆34Updated last year
- KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.☆167Updated last year
- ✨🔐 CNCF Fuzzers☆113Updated last week
- ☆26Updated this week
- CLI for spins up a K8s cluster locally in 10 seconds.☆16Updated 5 months ago
- Runtime security plug to protect user containers☆65Updated this week
- A Kubernetes Job to collect resources, logs and events☆23Updated 2 weeks ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆59Updated 8 months ago
- A tool for in-depth analysis of container checkpoints☆101Updated this week
- Post-exploit a compromised etcd, gain persistence and remote shell to nodes.☆70Updated 6 months ago
- in-toto is a framework to secure the software supply chain.☆69Updated 3 weeks ago
- Simplifying Kubernetes.☆67Updated 2 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Updated 10 months ago
- An open-source collection of API key rotation tutorials.☆60Updated 2 months ago
- A zero-config way to access your kubernetes cluster network☆98Updated 10 months ago
- libvirt autoscaler module for k8s cluster-autoscaler☆20Updated last year
- Embed machine learning models in your Dockerfile☆84Updated 3 months ago
- Wavy is a toolset for running GUI applications on Kubernetes☆68Updated last year
- A convenience tool to generate and store certificates for Hubble Relay mTLS☆21Updated this week
- Kpad is a simple multiplatform terminal editor born to edit kubernetes declarative manifest yaml files.☆45Updated last year
- Kubernetes aware network traffic monitoring☆44Updated 2 months ago
- Educational Resources for Software Supply Chain Security☆76Updated this week