thomasfricke / training-kubernetes-security

Related projects ⓘ

Alternatives and complementary repositories for training-kubernetes-security

• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆194Updated last week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆215Updated this week
• securekubernetes / securekubernetes
  Attacking and Defending Kubernetes Clusters: A Guided Tour
  ☆206Updated 3 years ago
• dbsystel / trivy-vulnerability-explorer
  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…
  ☆115Updated last week
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 months ago
• inovex / illuminatio
  The kubernetes network policy validator.
  ☆244Updated 3 years ago
• thomasfricke / container-hardening
  scripts which help harden containers
  ☆29Updated 2 years ago
• sse-secure-systems / connaisseur
  An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
  ☆443Updated this week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆66Updated 11 months ago
• devopstales / trivy-operator
  Kubernetes Operator based on the open-source container vulnerability scanner Trivy.
  ☆47Updated 4 months ago
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆79Updated last week
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆132Updated this week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆228Updated 6 months ago
• buildsec / frsca
  ☆228Updated this week
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆170Updated 2 weeks ago
• nmeisenzahl / hijack-kubernetes
  This repo includes a demo that shows how a Kubernetes cluster can be hijacked and how to prevent it using common best practices.
  ☆46Updated last year
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆439Updated 5 months ago
• fjogeleit / trivy-operator-polr-adapter
  Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports
  ☆56Updated last week
• OWASP / www-project-kubernetes-top-ten
  OWASP Foundation Web Respository
  ☆566Updated 9 months ago
• kyverno / policies
  Kyverno policies for security and best practices
  ☆333Updated 2 weeks ago
• DependencyTrack / helm-charts
  Helm Charts for Dependency-Track
  ☆23Updated this week
• 4ARMED / kubeletmein
  Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.
  ☆160Updated last year
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆124Updated 2 years ago
• mondoohq / cnspec
  An open source, cloud-native security to protect everything from build to runtime
  ☆275Updated this week
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆118Updated 11 months ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆318Updated 10 months ago
• kyverno / policy-reporter
  Monitoring and Observability Tool for the PolicyReport CRD with an optional UI.
  ☆281Updated this week
• telekom-mms / trivy-dojo-report-operator
  This Kubernetes operator listens for vulnerability reports generated by the Trivy Operator and forwards them to Defect Dojo for further a…
  ☆13Updated this week
• kubernetes-sigs / bom
  A utility to generate SPDX-compliant Bill of Materials manifests
  ☆344Updated last week