Merge pull request #25 from goproslowyo/patch-1

Add Vault Secrets Operator
Merge pull request #27 from mariuszmichalowski/patch-1
2023-03-06 09:45:20 -07:00 · 2023-03-06 09:44:52 -07:00 · 2023-03-06 09:42:46 -07:00 · 2023-03-06 09:42:09 -07:00 · 2023-03-06 17:40:31 +01:00 · 2023-02-16 16:56:12 -08:00
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -7,7 +7,9 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
 - [aad-pod-identity](https://github.com/Azure/aad-pod-identity/) -  Assign Azure AD idenitites to pods in Kubernetes, in order to access Azure resources
 - [audit2rbac](https://github.com/liggitt/audit2rbac) - Autogenerate RBAC policies based on Kubernetes audit logs
 - [Deepfence ThreatMapper](https://github.com/deepfence/ThreatMapper) - Apache v2, powerful runtime vulnerability scanner for kubernetes, virtual machines and serverless
+- [cnspec](https://cnspec.io) - Scan Kubernetes clusters, containers, and manifest files for vulnerabilities and misconfigurations
 - [falco](https://github.com/falcosecurity/falco) - Container Native Runtime Security
+- [kdigger](https://github.com/quarkslab/kdigger) - Kubernetes focused container assessment and context discovery tool for penetration testing
 - [kiam](https://github.com/uswitch/kiam) - Integrate AWS IAM with Kubernetes
 - [kube-bench](https://github.com/aquasecurity/kube-bench) - Check whether Kubernetes is deployed according to security best practics
 - [kube-hunter](https://github.com/aquasecurity/kube-hunter) - Hunt for security weaknesses in Kubernetes clusters
@ -31,6 +33,7 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
 - [trivy](https://github.com/aquasecurity/trivy) - A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
 - [kubernetes-rbac-audit](https://github.com/cyberark/kubernetes-rbac-audit) - Tool for auditing RBACs in Kubernetes
 - [kubernetes-external-secrets](https://github.com/external-secrets/kubernetes-external-secrets) - Tool to get External Secrets from Hashicorp Vault and AWS SSM
+- [vault-secrets-operator](https://github.com/ricoberger/vault-secrets-operator) - An operator to create Kubernetes secrets from Vault for a secure GitOps based workflow

 ## General Resources

@ -41,6 +44,7 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
 - [Kubernetes Security Checklist and Requirements](https://github.com/Vinum-Security/kubernetes-security-checklist)
 - [OWASP Kubernetes Security Cheatsheet](https://cheatsheetseries.owasp.org/cheatsheets/Kubernetes_Security_Cheat_Sheet.html)
 - [Securing Kubernetes Clusters](https://www.cyberark.com/resources/threat-research-blog/securing-kubernetes-clusters-by-eliminating-risky-permissions)
+- [Kubernetes Security : 6 Best Practices for 4C Security Model](https://spacelift.io/blog/kubernetes-security)

 ## Twitter Accounts
Author	SHA1	Message	Date
Jimmy Mesta	0fa0518f53	Merge pull request #25 from goproslowyo/patch-1 Add Vault Secrets Operator	2023-03-06 09:45:20 -07:00
Jimmy Mesta	1de87471c3	Merge pull request #27 from mariuszmichalowski/patch-1 Added new article about Kubernetes Security best practices	2023-03-06 09:44:52 -07:00
Jimmy Mesta	caeb2b97e4	Merge pull request #28 from tas50/master Add cnspec tool	2023-03-06 09:42:46 -07:00
Jimmy Mesta	c5c51f6880	Merge pull request #29 from mtardy/patch-1 Added kdigger to the open source projects list	2023-03-06 09:42:09 -07:00
Mahé	5f6137621a	Added kdigger to the open source projects list	2023-03-06 17:40:31 +01:00
Tim Smith	d60a842373	Add cnspec tool OSS CLI tool to scan K8s clusters, manifests, containers, container registries + a lot more. Signed-off-by: Tim Smith <tsmith84@gmail.com>	2023-02-16 16:56:12 -08:00
Mariusz Michalowski	97af472fae	Added new article about Kubernetes Security best practices	2023-01-16 14:29:38 +01:00
goproslowyo	03ad9fde91	Add Vault Secrets Operator	2022-04-12 19:34:34 -07:00