Compare commits
8 Commits
b6ffc16f30
...
0fa0518f53
Author | SHA1 | Date |
---|---|---|
Jimmy Mesta | 0fa0518f53 | |
Jimmy Mesta | 1de87471c3 | |
Jimmy Mesta | caeb2b97e4 | |
Jimmy Mesta | c5c51f6880 | |
Mahé | 5f6137621a | |
Tim Smith | d60a842373 | |
Mariusz Michalowski | 97af472fae | |
goproslowyo | 03ad9fde91 |
|
@ -7,7 +7,9 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
|
|||
- [aad-pod-identity](https://github.com/Azure/aad-pod-identity/) - Assign Azure AD idenitites to pods in Kubernetes, in order to access Azure resources
|
||||
- [audit2rbac](https://github.com/liggitt/audit2rbac) - Autogenerate RBAC policies based on Kubernetes audit logs
|
||||
- [Deepfence ThreatMapper](https://github.com/deepfence/ThreatMapper) - Apache v2, powerful runtime vulnerability scanner for kubernetes, virtual machines and serverless
|
||||
- [cnspec](https://cnspec.io) - Scan Kubernetes clusters, containers, and manifest files for vulnerabilities and misconfigurations
|
||||
- [falco](https://github.com/falcosecurity/falco) - Container Native Runtime Security
|
||||
- [kdigger](https://github.com/quarkslab/kdigger) - Kubernetes focused container assessment and context discovery tool for penetration testing
|
||||
- [kiam](https://github.com/uswitch/kiam) - Integrate AWS IAM with Kubernetes
|
||||
- [kube-bench](https://github.com/aquasecurity/kube-bench) - Check whether Kubernetes is deployed according to security best practics
|
||||
- [kube-hunter](https://github.com/aquasecurity/kube-hunter) - Hunt for security weaknesses in Kubernetes clusters
|
||||
|
@ -31,6 +33,7 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
|
|||
- [trivy](https://github.com/aquasecurity/trivy) - A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
|
||||
- [kubernetes-rbac-audit](https://github.com/cyberark/kubernetes-rbac-audit) - Tool for auditing RBACs in Kubernetes
|
||||
- [kubernetes-external-secrets](https://github.com/external-secrets/kubernetes-external-secrets) - Tool to get External Secrets from Hashicorp Vault and AWS SSM
|
||||
- [vault-secrets-operator](https://github.com/ricoberger/vault-secrets-operator) - An operator to create Kubernetes secrets from Vault for a secure GitOps based workflow
|
||||
|
||||
## General Resources
|
||||
|
||||
|
@ -41,6 +44,7 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
|
|||
- [Kubernetes Security Checklist and Requirements](https://github.com/Vinum-Security/kubernetes-security-checklist)
|
||||
- [OWASP Kubernetes Security Cheatsheet](https://cheatsheetseries.owasp.org/cheatsheets/Kubernetes_Security_Cheat_Sheet.html)
|
||||
- [Securing Kubernetes Clusters](https://www.cyberark.com/resources/threat-research-blog/securing-kubernetes-clusters-by-eliminating-risky-permissions)
|
||||
- [Kubernetes Security : 6 Best Practices for 4C Security Model](https://spacelift.io/blog/kubernetes-security)
|
||||
|
||||
## Twitter Accounts
|
||||
|
||||
|
|
Loading…
Reference in New Issue