thomasfricke / training-kubernetes-security

Related projects: ⓘ

• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆214Updated this week
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆189Updated last week
• dbsystel / trivy-vulnerability-explorer
  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…
  ☆108Updated this week
• securekubernetes / securekubernetes
  Attacking and Defending Kubernetes Clusters: A Guided Tour
  ☆205Updated 3 years ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆226Updated 4 months ago
• sse-secure-systems / connaisseur
  An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
  ☆436Updated this week
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆301Updated 3 months ago
• thomasfricke / container-hardening
  scripts which help harden containers
  ☆29Updated last year
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆166Updated last week
• falco-talon / falco-talon
  Falco Talon is a Response Engine for managing threats in your Kubernetes
  ☆101Updated this week
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 weeks ago
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆428Updated 3 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆64Updated 9 months ago
• buildsec / frsca
  ☆225Updated this week
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆403Updated this week
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆331Updated 8 months ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆117Updated 9 months ago
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆42Updated 6 months ago
• sysdiglabs / kube-psp-advisor
  Help building an adaptive and fine-grained pod security policy
  ☆330Updated 11 months ago
• bridgecrewio / helm-scanner
  Open source IaC security scanner for public Helm charts
  ☆87Updated 2 years ago
• falcosecurity / falcosidekick
  Connect Falco to your ecosystem
  ☆538Updated this week
• octarinesec / kube-scan
  kube-scan: Octarine k8s cluster risk assessment tool
  ☆794Updated last year
• alcideio / skan
  Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
  ☆207Updated last year
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆109Updated last week
• devopstales / trivy-operator
  Kubernetes Operator based on the open-source container vulnerability scanner Trivy.
  ☆47Updated 2 months ago
• DependencyTrack / helm-charts
  Helm Charts for Dependency-Track
  ☆21Updated this week
• ondat / trousseau
  Store and access your secrets the Kubernetes native way with any external KMS.
  ☆177Updated last year
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆207Updated 3 weeks ago
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆125Updated 2 years ago
• raesene / container-security-site
  ☆90Updated 4 months ago