wiz-sec-public / namespacehoundLinks
NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
☆105Updated 6 months ago
Alternatives and similar repositories for namespacehound
Users that are interested in namespacehound are comparing it to the libraries listed below
Sorting:
- Kubernetes audit logging, when you don't control the control plane☆82Updated this week
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated 10 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- ☆77Updated 2 weeks ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆55Updated 5 months ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆57Updated last year
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated this week
- ☆99Updated 5 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 8 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆82Updated last year
- 🧰 Multi Tool Kubernetes Pentest Image☆240Updated 2 months ago
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆116Updated last month
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Response Engine for managing threats in your Kubernetes☆164Updated last week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- ☆42Updated last month
- BadRobot - Operator Security Audit Tool☆221Updated last week
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆67Updated 6 months ago
- Compares and analyzes GCP IAM roles.☆77Updated 4 months ago
- ☆55Updated last week
- A tool for preventing the installation of malicious npm and PyPI packages☆149Updated this week
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆70Updated 2 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆82Updated last year
- ☆179Updated 2 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆86Updated this week
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆48Updated last week
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆79Updated last week
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago