mirror of
https://github.com/tomhuang12/awesome-k8s-resources.git
synced 2024-10-01 06:35:50 -04:00
42 KiB
42 KiB
Awesome Kubernetes Resources
A curated list of awesome Kubernetes tools and resources.
Inspired by awesome list and donnemartin/awesome-aws.
The Fiery Meter of Awesomeness
- Repo with 0050+ Stars: 🔥
- Repo with 0200+ Stars: 🔥🔥
- Repo with 0500+ Stars: 🔥🔥🔥
- Repo with 1000+ Stars: 🔥🔥🔥🔥
- Repo with 2000+ Stars: 🔥🔥🔥🔥🔥
Idea taken from donnemartin/awesome-aws.
Contents
- Tools and Libraries
- Command Line Tools
- Cluster Provisioning
- Automation and CI/CD
- Cluster Resources Management
- Secrets Management
- Networking
- Storage
- Testing and Troubleshooting
- Monitoring, Alerts, and Visualization
- Backup and Restore
- Security and Compliance
- Service Mesh
- Development Tools
- Data Processing and Machine Learning
- Miscellaneous
- Guides, Documentations, Blogs, and Learnings
- Contribute
- License
Tools and Libraries
Items with 💚 indicate open source projects.
Command Line Tools
- 💚Helm 🔥🔥🔥🔥🔥 - Helm is a tool for managing Charts. Charts are packages of pre-configured Kubernetes resources.
- 💚K9s 🔥🔥🔥🔥🔥 - K9s provides a terminal UI to interact with your Kubernetes clusters.
- 💚Ktunnel 🔥 - Ktunnel is a CLI tool that establishes a reverse tunnel between a kubernetes cluster and your local machine.
- 💚Kubebox 🔥🔥🔥🔥 - Terminal and Web console for Kubernetes
- 💚Kubetail 🔥🔥🔥🔥 - Bash script that enables you to aggregate (tail/follow) logs from multiple pods into one stream.
- 💚kube-shell 🔥🔥🔥🔥 - Kube-shell: An integrated shell for working with the Kubernetes CLI.
- 💚kubectl tree 🔥🔥🔥🔥 - A kubectl plugin to explore ownership relationships between Kubernetes objects through owners.
- 💚kubectl-aliases 🔥🔥🔥🔥 - This repository contains a script to generate hundreds of convenient shell aliases for kubectl.
- 💚kubectx + kubens 🔥🔥🔥🔥🔥 -
kubectx
helps you switch between clusters back and forth, andkubens
helps you switch between Kubernetes namespaces smoothly. - 💚kubediff 🔥🔥🔥 - Kubediff is a tool for Kubernetes to show you the differences between your running configuration and your version controlled configuration.
- 💚kubeprompt - Isolates KUBECONFIG in each shell and shows the current Kubernetes context/namespace in your prompt
- 💚Kubevela 🔥🔥🔥🔥 - KubeVela is an easy-to-use yet extensible platform that enables them to design and ship applications with minimal effort.
- 💚nova - Nova scans your cluster for installed Helm charts, then cross-checks them against all known Helm repositories.
- 💚stern 🔥🔥🔥🔥🔥 - Stern allows you to tail multiple pods on Kubernetes and multiple containers within the pod.
Cluster Provisioning
- 💚Bootkube 🔥🔥🔥🔥 - Bootkube is a tool for launching self-hosted Kubernetes clusters.
- 💚eksctl 🔥🔥🔥🔥🔥 -
eksctl
is a simple CLI tool for creating clusters on EKS - Amazon's new managed Kubernetes service for EC2. - 💚k3d 🔥🔥🔥🔥 - k3d,and Windows.,destroy,half the memory,highly available,is a tool for running local k3s clusters in docker. It's a single binary about 20 MB. You need to have docker installed.
- 💚k3s 🔥🔥🔥🔥🔥 - Lightweight Kubernetes. Easy to install,Kubernetes clusters from the command line.
- 💚kind 🔥🔥🔥🔥🔥 - kind is a tool for running local Kubernetes clusters using Docker container "nodes".
- 💚kops 🔥🔥🔥🔥🔥 -
kops
helps you create,like kind,upgrade and maintain production-grade - 💚kube-aws 🔥🔥🔥🔥 -
kube-aws
is a command-line tool to create/update/destroy Kubernetes clusters on AWS. - 💚kubespray 🔥🔥🔥🔥🔥 - Deploy a production ready Kubernetes cluster
- 💚Minikube 🔥🔥🔥🔥🔥 - minikube implements a local Kubernetes cluster on macOS,Linux,all in a binary less than 100 MB.
- Kubeadm - kubeadm performs the actions necessary to get a minimum viable cluster up and running.
Automation and CI/CD
- 💚Apollo 🔥🔥 - Apollo is a simple, lightweight, Continuous Deployment (CD) solution on top of Kubernetes.
- 💚Argo CD 🔥🔥🔥🔥🔥 - Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
- 💚Argo Events 🔥🔥🔥 - Argo Events is an event-driven workflow automation framework for Kubernetes which helps you trigger K8s objects, Argo Workflows, Serverless workloads, etc.
- 💚Argo Rollouts 🔥🔥🔥 - Argo Rollouts controller, uses the Rollout custom resource to provide additional deployment strategies such as Blue Green and Canary to Kubernetes.
- 💚Argo Workflows 🔥🔥🔥🔥🔥 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes.
- Codefresh - Codefresh is a Docker-native CI/CD platform. Instantly build, test and deploy Docker images to Kubernetes.
- 💚Flagger 🔥🔥🔥🔥🔥 - Flagger is a progressive delivery tool that automates the release process for applications running on Kubernetes.
- 💚Flux 🔥🔥🔥🔥🔥 - Flux is a tool that automatically ensures that the state of a cluster matches the config in git.
- 💚Flux2 🔥🔥🔥 - Flux version 2 is built from the ground up to use Kubernetes' API extension system, and to integrate with Prometheus and other core components of the Kubernetes ecosystem.
- 💚Helm Operator 🔥🔥 - The Helm Operator is a Kubernetes operator, allowing one to declaratively manage Helm chart releases.
- 💚k8s-image-swapper 🔥 -
k8s-image-swapper
is a mutating webhook for Kubernetes, downloading images into your own registry and pointing the images to that new location. - 💚KEDA 🔥🔥🔥🔥🔥 - KEDA allows for fine grained autoscaling (including to/from zero) for event driven Kubernetes workloads.
- 💚KubeSphere 🔥🔥🔥🔥🔥 - KubeSphere is a distributed operating system providing cloud native stack with Kubernetes as its kernel, and aims to be plug-and-play architecture for third-party applications seamless integration to boost its ecosystem.
- 💚Reloader 🔥🔥🔥🔥 - Reloader can watch changes in
ConfigMap
andSecret
and do rolling upgrades on Pods with their associatedDeploymentConfigs
,Deployments
,Daemonsets
andStatefulsets
. - 💚Skaffold 🔥🔥🔥🔥🔥 - Skaffold is a command line tool that facilitates continuous development for Kubernetes applications.
- 💚Spinnaker 🔥🔥🔥🔥🔥 - Spinnaker is an open-source continuous delivery platform for releasing software changes with high velocity and confidence.
- 💚werf 🔥🔥🔥🔥🔥 - werf is a CLI tool glueing Git, Docker, Helm & Kubernetes with any CI system to implement CI/CD and GitOps.
Cluster Resources Management
- 💚Grafana Tanka 🔥🔥🔥 - The clean, concise and super flexible alternative to YAML for your Kubernetes cluster.
- 💚Kruise 🔥🔥🔥🔥 - Kruise consists of several controllers which extend and complement the Kubernetes core controllers for workload management.
- 💚KubeDirector 🔥🔥 - KubeDirector uses standard Kubernetes (K8s) facilities of custom resources and API extensions to implement stateful scaleout application clusters.
- 💚Kubenav 🔥🔥🔥 - kubenav is the navigator for your Kubernetes clusters right in your pocket.
- 💚Liqo 🔥 - Liqo implements Dynamic resource sharing across different Kubernetes clusters (e.g.; offloading pods and services), supporting decentralized governance.
- 💚The Hierarchical Namespace Controller 🔥🔥🔥 - Hierarchical namespaces make it easier to share your cluster by making namespaces more powerful.
Secrets Management
- 💚Kubernetes External Secrets 🔥🔥🔥 - Kubernetes External Secrets allows you to use external secret management systems, like AWS Secrets Manager or HashiCorp Vault, to securely add secrets in Kubernetes.
- 💚Sealed Secrets 🔥🔥🔥🔥🔥 - Encrypt your Secret into a SealedSecret, which is safe to store - even to a public repository.
Networking
- 💚Calico Networking 🔥🔥🔥🔥 - Calico is an open source networking and network security solution for containers, virtual machines, and bare-metal workloads
- 💚cert-manager 🔥🔥🔥🔥🔥 - cert-manager is a Kubernetes add-on to automate the management and issuance of TLS certificates from various issuing sources.
- 💚CoreDNS 🔥🔥🔥🔥🔥 - CoreDNS is a fast and flexible DNS server that works on Kubernetes.
- 💚ingress-nginx 🔥🔥🔥🔥🔥 -
ingress-nginx
is an Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer. - 💚Kong for Kubernetes 🔥🔥🔥🔥 - Configure plugins, health checking, load balancing and more in Kong for Kubernetes Services.
- 💚ksniff 🔥🔥🔥 - A kubectl plugin that utilize tcpdump and Wireshark to start a remote capture on any pod in your Kubernetes cluster.
- 💚kubectl trace 🔥🔥🔥 -
kubectl trace
is a kubectl plugin that allows you to schedule the execution of bpftrace programs in your Kubernetes cluster. - 💚kubernetes-ingress 🔥🔥🔥🔥🔥 - An implementation of an Ingress controller for NGINX and NGINX Plus (commercial).
- 💚kube-ovn 🔥🔥🔥 - A Kubernetes Network Fabric for Enterprises that is Rich in Functions and Easy in Operations.
Storage
- 💚Longhorn 🔥🔥🔥🔥 - Longhorn is a distributed block storage system for Kubernetes.
- 💚OpenEBS 🔥🔥🔥🔥🔥 - OpenEBS is the most widely deployed and easy to use open-source storage solution for Kubernetes.
- 💚Rook 🔥🔥🔥🔥🔥 - Rook is an open source cloud-native storage orchestrator for Kubernetes.
- Amazon EBS CSI Driver - The Amazon Elastic Block Store Container Storage Interface (CSI) Driver provides a CSI interface used by Container Orchestrators to manage the lifecycle of Amazon EBS volumes.
- Amazon EFS CSI Driver - The Amazon Elastic File System Container Storage Interface (CSI) Driver implements the CSI specification for container orchestrators to manage the lifecycle of Amazon EFS filesystems.
- Amazon FSx for Lustre CSI Driver - The Amazon FSx for Lustre Container Storage Interface (CSI) Driver implements CSI specification for container orchestrators (CO) to manage lifecycle of Amazon FSx for Lustre filesystems.
Testing and Troubleshooting
- 💚Chaos Mesh 🔥🔥🔥🔥 - Chaos Mesh® is a cloud-native Chaos Engineering platform that orchestrates chaos on Kubernetes environments.
- 💚chaoskube 🔥🔥🔥🔥 -
chaoskube
periodically kills random pods in your Kubernetes cluster. - 💚Conftest 🔥🔥🔥🔥 - Conftest helps you write tests against structured configuration data.
- 💚Copper 🔥🔥 - A configuration file validator for Kubernetes. This is specifically useful with Kubernetes configuration files to enforce best practices, apply policies and compliance requirements.
- 💚k6 🔥🔥🔥🔥🔥 - k6 is a modern load testing tool, building on Load Impact's years of experience in the load and performance testing industry.
- 💚ksniff 🔥🔥🔥 - A kubectl plugin that utilize tcpdump and Wireshark to start a remote capture on any pod in your Kubernetes cluster.
- 💚Kube DOOM 🔥🔥🔥🔥 - The next level of chaos engineering is here! Kill pods inside your Kubernetes cluster by shooting them in Doom!
- 💚kube-monkey 🔥🔥🔥🔥 - It randomly deletes Kubernetes (k8s) pods in the cluster encouraging and validating the development of failure-resilient services.
- 💚kube-score 🔥🔥🔥 -
kube-score
is a tool that performs static code analysis of your Kubernetes object definitions. - 💚Kubectl-debug 🔥🔥🔥🔥 -
kubectl-debug
is an out-of-tree solution for troubleshooting running pods, which allows you to run a new container in running pods for debugging purpose. - 💚KubeInvaders 🔥🔥🔥 - Through KubeInvaders you can stress Kubernetes cluster in a fun way and check how it is resilient.
- 💚Kubetest 🔥 - Kubetest is a pytest plugin that makes it easier to manage a Kubernetes cluster within your integration tests.
- 💚Litmus 🔥🔥🔥 - Litmus provides tools to orchestrate chaos on Kubernetes to help SREs find weaknesses in their deployments.
- 💚popeye 🔥🔥🔥🔥🔥 - Popeye is a utility that scans live Kubernetes cluster and reports potential issues with deployed resources and configurations.
- 💚PowerfulSeal 🔥🔥🔥🔥 - PowerfulSeal injects failure into your Kubernetes clusters, so that you can detect problems as early as possible.
Monitoring, Alerts, and Visualization
- 💚BotKube 🔥🔥🔥 - BotKube integration with Slack or Mattermost helps you monitor your Kubernetes cluster, debug critical deployments and gives recommendations for standard practices by running checks on the Kubernetes resources.
- 💚Cortex 🔥🔥🔥🔥🔥 - Cortex provides horizontally scalable, highly available, multi-tenant, long term storage for Prometheus.
- 💚Goldilocks 🔥🔥 - This tool creates a vertical pod autoscaler for each deployment in a namespace and then queries them for information.
- 💚Grafana 🔥🔥🔥🔥🔥 - Grafana allows you to query, visualize, alert on and understand your metrics no matter where they are stored.
- 💚k8s-image-availability-exporter 🔥 - Prometheus exporter that warns you proactively about images that are defined in Kubernetes objects but are not available in the container registry.
- 💚Kiali 🔥🔥🔥🔥🔥 - Kiali works with Istio to visualise the service mesh topology.
- 💚kube-capacity 🔥🔥🔥 - This is a simple CLI that provides an overview of the resource requests, limits, and utilization in a Kubernetes cluster.
- 💚kube-state-metrics 🔥🔥🔥🔥🔥 - kube-state-metrics is a simple service that listens to the Kubernetes API server and generates metrics about the state of the objects.
- 💚Kubernetes Dashboard 🔥🔥🔥🔥🔥 - Kubernetes Dashboard is a general purpose, web-based UI for Kubernetes clusters.
- 💚Kubernetes Metrics Server 🔥🔥🔥🔥🔥 - Metrics Server is a scalable, efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines.
- 💚Kubernetes Operational View 🔥🔥🔥🔥 - A tool that aims to provide a common operational picture for multiple Kubernetes clusters.
- 💚kubewatch 🔥🔥🔥🔥 -
kubewatch
is a Kubernetes watcher that currently publishes notification to available collaboration hubs/notification channels. - 💚Lens 🔥🔥🔥🔥🔥 - Lens it's an useful, attractive, open source user interface (UI) for working with Kubernetes clusters.
- 💚Octant 🔥🔥🔥🔥🔥 - Octant is a highly extensible platform for developers to better understand the complexity of Kubernetes clusters.
- 💚Popeye 🔥🔥🔥🔥🔥 - Popeye is a utility that scans live Kubernetes cluster and reports potential issues with deployed resources and configurations.
- 💚Prometheus 🔥🔥🔥🔥🔥 - Prometheus, a Cloud Native Computing Foundation project, is a systems and service monitoring system.
- 💚Searchlight 🔥🔥 - Searchlight/Icinga periodically runs various checks on a Kubernetes cluster and sends notifications if detects an issue.
- 💚Sloop 🔥🔥🔥 - Sloop monitors Kubernetes, recording histories of events and resource state changes and providing visualizations to aid in debugging past events.
- 💚Thanos 🔥🔥🔥🔥🔥 - Thanos is a set of components that can be composed into a highly available metric system with unlimited storage capacity.
- 💚Kubedev 🔥 - Kubedev is a powerful and beautiful user interface for managing Kubernetes clusters.
- 💚KubeHelper 🔥 - KubeHelper - simplifies many daily Kubernetes cluster tasks through a web interface.
Backup and Restore
- 💚katafygio 🔥 - katafygio discovers Kubernetes objects (deployments, services, ...), and continuously save them as yaml files in a git repository.
- 💚Velero 🔥🔥🔥🔥🔥 - Velero (formerly Heptio Ark) gives you tools to back up and restore your Kubernetes cluster resources and persistent volumes.
Security and Compliance
- 💚Falco 🔥🔥🔥🔥🔥 - Falco is a behavioral activity monitor designed to detect anomalous activity in your applications. You can use Falco to monitor run-time security of your Kubernetes applications and internal components.
- 💚Gatekeeper 🔥🔥🔥🔥 - Policy controller for Kubernetes
- 💚k-rail 🔥🔥 - k-rail is a workload policy enforcement tool for Kubernetes. It can help you secure a multi tenant cluster with minimal disruption and maximum velocity.
- 💚Konstraint - Konstraint is a CLI tool to assist with the creation and management of constraints when using Gatekeeper.
- 💚kube-bench 🔥🔥🔥🔥🔥 - kube-bench is a Go application that checks whether Kubernetes is deployed securely by running the checks documented in the CIS Kubernetes Benchmark.
- 💚kube-hunter 🔥🔥🔥🔥🔥 - kube-hunter hunts for security weaknesses in Kubernetes clusters.
- 💚KubeLinter 🔥🔥🔥 - KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
- 💚Kubesploit 🔥🔥 - Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent dedicated for containerized environments written in Golang and built on top of Merlin project by Russel Van Tuyl (@Ne0nd0g).
- 💚KubiScan 🔥🔥🔥 - A tool for scanning Kubernetes cluster for risky permissions in Kubernetes's Role-based access control (RBAC) authorization model.
- 💚Permission manager 🔥🔥🔥 - Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management for Kubernetes.
- 💚rakkess 🔥🔥🔥 - kubectl plugin to show an access matrix for server resources
- Kube-Scan 🔥🔥 - Kube-Scan gives a risk score, from 0 (no risk) to 10 (high risk) for each workload.
- Teleport 🔥🔥🔥🔥🔥 - Teleport Unified Access Plane enables engineers to quickly access any computing resource anywhere.
- Kyverno 🔥🔥🔥🔥 - Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans.
Service Mesh
- 💚Istio 🔥🔥🔥🔥🔥 - An open platform to connect, manage, and secure microservices.
- 💚Linkerd 🔥🔥🔥🔥🔥 - Linkerd is a transparent service mesh, designed to make modern applications safe and sane.
- 💚Open Service Mesh 🔥🔥🔥🔥 - Open Service Mesh (OSM) is a lightweight, extensible, Cloud Native service mesh that allows users to uniformly manage, secure, and get out-of-the-box observability features for highly dynamic microservice environments.
- AWS App Mesh - A service mesh service offered by AWS that works on AWS infrastructure services such as EKS and Fargate.
- Consul - HashiCorp's service mesh service that is infrastructure agnostic.
- NGINX Service Mesh - NGINX Service Mesh (NSM) provides a turnkey, secure, service-to-service solution for container traffic management, with a unified data plane for ingress and egress management in a single configuration.
Development Tools
- 💚garden 🔥🔥🔥🔥🔥 - Garden provides production-like Kubernetes testing environments for integration tests, QA, and development.
- 💚ko 🔥🔥🔥🔥 -
ko
is a tool for building and deploying Golang applications to Kubernetes. - 💚Konfig 🔥 - Konfig is a Kubernetes friendly Rails gem. It can load configuration and secrets from both YAML or folders with individual files and present them to your application the same way.
- 💚kubevious 🔥🔥🔥 - Kubevious renders all configurations relevant to the application in one place. That saves a lot of time from operators, eliminating the need for looking up settings and digging within selectors and labels.
- 💚kubectl-warp 🔥🔥 - Kubernetes CLI plugin for syncing and executing local files in Pod on Kubernetes
- 💚kubernix 🔥🔥 - This project aims to provide single dependency Kubernetes clusters for local testing, experimenting and development purposes.
- 💚Makisu 🔥🔥🔥🔥🔥 - Makisu is a fast and flexible Docker image build tool designed for unprivileged containerized environments such as Mesos or Kubernetes.
- 💚Okteto 🔥🔥🔥🔥 -
okteto
accelerates the development workflow of Kubernetes applications. - 💚Telepresence 🔥🔥🔥🔥🔥 - Telepresence provides fast, realistic local development for Kubernetes microservices.
- 💚Tilt 🔥🔥🔥🔥🔥 - Tilt powers multi-service development and makes sure they behave.
- 💚Tye 🔥🔥🔥🔥 - Tye is a developer tool that makes developing, testing, and deploying microservices and distributed applications easier.
Data Processing and Machine Learning
- 💚Kubeflow 🔥🔥🔥🔥🔥 - Kubeflow is a Cloud Native platform for machine learning based on Google’s internal machine learning pipelines.
- 💚Strimzi 🔥🔥🔥🔥 - Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configurations.
- 💚Volcano 🔥🔥🔥 - Volcano is a batch system built on Kubernetes.
- 💚yunikorn 🔥🔥 - a light-weight, universal resource scheduler for container orchestrator systems.
Miscellaneous
- 💚Agones 🔥🔥🔥🔥🔥 - Agones is a library for hosting, running and scaling dedicated game servers on Kubernetes.
- 💚AWS Controllers for Kubernetes 🔥🔥🔥🔥 - AWS Controllers for Kubernetes (ACK) lets you define and use AWS service resources directly from Kubernetes.
- 💚AWS Node Termination Handler 🔥🔥 - A Kubernetes Daemonset to gracefully handle EC2 instance shutdown
- 💚Brigade 🔥🔥🔥🔥🔥 - Brigade is the tool for creating pipelines for Kubernetes.
- 💚Crossplane 🔥🔥🔥🔥🔥 - Crossplane is an open source Kubernetes add-on that extends any cluster with the ability to provision and manage cloud infrastructure, services, and applications.
- 💚Descheduler for Kubernetes 🔥🔥🔥🔥 - Descheduling pods from nodes based on policies
- 💚Kubecost 🔥🔥🔥 - Kubecost models give teams visibility into current and historical Kubernetes spend and resource allocation.
- 💚KubeEdge 🔥🔥🔥🔥🔥 - KubeEdge is built upon Kubernetes and extends native containerized application orchestration and device management to hosts at the Edge.
- 💚Kubeless 🔥🔥🔥🔥🔥 -
kubeless
is a Kubernetes-native serverless framework that lets you deploy small bits of code without having to worry about the underlying infrastructure plumbing. - 💚KubePug 🔥 - A tool to check deprecations before upgrading Kubernetes version
- 💚Shell-operator 🔥🔥🔥🔥 - Shell-operator is a tool for running event-driven scripts in a Kubernetes cluster.
Guides, Documentations, Blogs, and Learnings
Guides
- A Beginner’s Guide to Kubernetes - A comprehensive introduction to Kubernetes architecture
- A Guide to the Kubernetes Networking Model - A in-depth run-through of Kubernetes networking
- Amazon EKS Best Practices Guide for Security - This guide provides advice about protecting information, systems, and assets that are reliant on EKS while delivering business value through risk assessments and mitigation strategies.
- Amazon EKS Node Drainer - A guide and an example to cordon and evict all evictable pods from an EC2 node being terminated.
- Comparison of Kubernetes Ingress controllers - This research compares the capabilities of 14 different Kubernetes Ingress controllers.
- Configuring HA Kubernetes cluster on bare metal servers with kubeadm - A guide to standing up a HA Kubernetes cluster on bare metal servers with kubeadm.
- Introduction to Using Google Kubernetes Engine; Explain Like I’m Five! - Creating your first managed Kubernetes cluster on Google Kubernetes Engine using Terraform.
- Kubernetes Network Policy Recipes - This repository contains various use cases of Kubernetes Network Policies and sample YAML files to leverage in your setup.
- Kubernetes The Hard Way - Kubernetes The Hard Way guides you through bootstrapping a highly available Kubernetes cluster with end-to-end encryption between components and RBAC authentication.
- Kubernetes Working Group for Multi-Tenancy - This is a working place for multi-tenancy related proposals and prototypes.
- Production grade Kubernetes Monitoring using Prometheus - A in-depth guide to deploy Prometheus monitoring solution.
- The Illustrated Children’s Guide to Kubernetes - Graphical explanations of Kubernetes
- Troubleshooting Kubernetes deployments - A flow chart to troubleshoot a kubernetes deployment in case of issues
- Vertical Pod Autoscaling: The Definitive Guide - An in-depth explanation on Kubernetes VPA: what it is, how it works, how to use it and which limitations it has.
- Writing Your First Kubernetes Operator - In this article, we’ll see how to build and deploy your first Kubernetes Operator using the Operator SDK.
Blogs and Videos
- 10 most common mistakes using kubernetes - Common pitfalls and how to avoid them.
- How the Department of Defense Moved to Kubernetes and Istio - Focus on the sidecar security stack leveraging Envoy and sidecar containers to ensure zero trust security and baked-in multi-layer security.
- Kubernetes at Reddit: Tales from Production - Hear of successes, share in the heartbreak of production explosions, and gain insight into what has and hasn't worked well for one of the world's busiest web properties.
- Kubernetes Failure Stories - A compiled list of links to public failure stories related to Kubernetes.
- Life of a Packet - Tracing the path of network traffic in the Kubernetes system.
- OPA Deep Dive - Deep dive on some exciting new features in the OPA project presented by the co-creators.
- Scaling Kubernetes to 2,500 Nodes + Scaling Kubernetes to 7,500 Nodes - Issues you will encounter when running high-scale Kubernetes workloads.
- Service Mesh Comparison - An easy compensation to help choose one of the service Mesh implementations.
Learnings and Documentations
- A Beginner’s Guide to Kubernetes - A comprehensive introduction to Kubernetes architecture
- ConfigMaps in Kubernetes: how they work and what you should remember - Understanding the evolution to ConfigMaps, how they work and what happens when they change.
- Configuring Redis using a ConfigMap - A walkthrough that provides a real world example of how to configure Redis using a ConfigMap
- Example: Deploying Cassandra with a StatefulSet - This tutorial shows you how to run Apache Cassandra on Kubernetes. Cassandra, a database, needs persistent storage to provide data durability.
- Example: Deploying PHP Guestbook application with Redis - This tutorial shows you how to build and deploy a simple, multi-tier web application using Kubernetes and Docker.
- Example: Deploying WordPress and MySQL with Persistent Volumes - This tutorial shows you how to deploy a WordPress site and a MySQL database using Minikube.
- Exposing an External IP Address to Access an Application in a Cluster - This guide shows how to create a Kubernetes Service object that exposes an external IP address.
- Katacoda - This is a Kubernetes playground, a safe place designed for experimenting, exploring and learning Kubernetes.
- kubectl Cheat Sheet - An official list of commonly used kubectl commands and flags.
- Kubectl Kubernetes CheatSheet - A cheatsheet containing many helpful kubectl commands
- Kubernetes API Reference Docs - A high-level overview of the basic types of resources provided by the Kubernetes API and their primary functions.
- Learn Kubernetes Basics - This tutorial provides a walkthrough of the basics of the Kubernetes cluster orchestration system.
- Play with Kubernetes - Play with Kubernetes is a playground which allows users to run K8s clusters in a matter of seconds.
- Ready-to-use commands and tips for kubectl - Various kubectl tips and tricks by Flant’s engineers.
- Running ZooKeeper, A Distributed System Coordinator - This tutorial demonstrates running Apache Zookeeper on Kubernetes using StatefulSets, PodDisruptionBudgets, and PodAntiAffinity.
- Set Up a CI/CD Pipeline with Kubernetes - A end-to-end guide to set up a CI/CD Pipeline with Kubernetes.
- StatefulSet Basics - This tutorial provides an introduction to managing applications with StatefulSets.
- Webinar: K8s with OPA Gatekeeper - How to use OPA to control what end-users can do on the cluster and ways to ensure that clusters are in compliance with company policies.
Certification Guides
- Certified Kubernetes Security Specialist - CKSS - This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.
- CKS "Certified Kubernetes security specialist certification - Kubernetes security resources primarly from material allowed during the exam, and extra optional items to help you advance your container and kubernetes security journey.
- How to pass the Certified Kubernetes Administrator (CKA) exam on the first attempt - A guide to pass CKA exam
- The ultimate CKA "Certfified Kuberenetes Administator" resource since exam inception - An updated repo of offical resources to help you master the CKA exam as well some extra resources to consolidate your kubernetes administration knowledge.
- Kubernetes Exam Simulator - CKS/CKA/CKAD exams scenarios and environment.
Contribute
Contributions welcome! Read the contribution guidelines first.
License
To the extent possible under law, Tom Huang has waived all copyright and related or neighboring rights to this work.