2019-05-21 22:19:55 +00:00
|
|
|
# :lock: awesome-kubernetes-security [![Awesome](https://awesome.re/badge.svg)](https://awesome.re)
|
2019-05-26 20:05:49 +00:00
|
|
|
|
|
|
|
A curated list of awesome Kubernetes security resources. Can you dig it?
|
|
|
|
|
2019-05-26 20:13:56 +00:00
|
|
|
- [audit2rbac](https://github.com/liggitt/audit2rbac) - Autogenerate RBAC policies based on Kubernetes audit logs
|
|
|
|
- [Falco](https://github.com/falcosecurity/falco) - Container Native Runtime Security
|
2019-06-03 18:59:33 +00:00
|
|
|
- [GKE Security Bulletins](https://cloud.google.com/kubernetes-engine/docs/security-bulletins) - GKE Security Bulletins and Advisories
|
2019-05-26 20:13:56 +00:00
|
|
|
- [kiam](https://github.com/uswitch/kiam) - Integrate AWS IAM with Kubernetes
|
|
|
|
- [kube-bench](https://github.com/aquasecurity/kube-bench) - Check whether Kubernetes is deployed according to security best practics
|
|
|
|
- [kube-hunter](https://github.com/aquasecurity/kube-hunter) - Hunt for security weaknesses in Kubernetes clusters
|
|
|
|
- [kube-psp-advisor](https://github.com/sysdiglabs/kube-psp-advisor) - Help building an adaptive and fine-grained pod security policy
|
|
|
|
- [kube2iam](https://github.com/jtblin/kube2iam) - Provide different AWS IAM roles for pods running on Kubernetes
|
|
|
|
- [kubeaudit](https://github.com/Shopify/kubeaudit) - Audit your Kubernetes clusters against common security controls
|
|
|
|
- [kubectl-bindrole](https://github.com/Ladicle/kubectl-bindrole) - Find Kubernetes roles bound to a specified ServiceAccount, Group or User
|
|
|
|
- [kubectl-dig](https://github.com/sysdiglabs/kubectl-dig) - Deep Kubernetes visibility from the kubectl
|
|
|
|
- [kubectl-kubesec](https://github.com/stefanprodan/kubectl-kubesec) - Scan Kubernetes pods, deployments, daemonsets and statefulsets with kubesec.io
|
|
|
|
- [kubectl-who-can](https://github.com/aquasecurity/kubectl-who-can) - Show who has permissions to <verb> <resource> in Kubernetes
|
|
|
|
- [rakkess](https://github.com/corneliusweig/rakkess) - Review access matrix for Kubernetes server resources
|
|
|
|
- [rback](https://github.com/mhausenblas/rback) - RBAC in Kubernetes visualizer
|
2019-06-03 18:54:40 +00:00
|
|
|
|
2019-06-03 18:54:54 +00:00
|
|
|
### Twitter Accounts
|
2019-06-03 18:54:40 +00:00
|
|
|
- [Ian Coldwater](https://twitter.com/iancoldwater) - Ian Coldwater: K8s breaker
|
2019-06-03 18:59:33 +00:00
|
|
|
- [learnk8s](https://twitter.com/learnk8s) - learnk8s Twitter feed
|