mirror of
https://github.com/ksoclabs/awesome-kubernetes-security.git
synced 2025-02-18 22:04:25 -05:00
🔒 awesome-kubernetes-security 
A curated list of awesome Kubernetes security resources. Can you dig it?
Open Source Projects
- audit2rbac - Autogenerate RBAC policies based on Kubernetes audit logs
- falco - Container Native Runtime Security
- kiam - Integrate AWS IAM with Kubernetes
- kube-bench - Check whether Kubernetes is deployed according to security best practics
- kube-hunter - Hunt for security weaknesses in Kubernetes clusters
- kube-psp-advisor - Help building an adaptive and fine-grained pod security policy
- kube-scan - k8s cluster risk assessment tool
- kube2iam - Provide different AWS IAM roles for pods running on Kubernetes
- kubeaudit - Audit your Kubernetes clusters against common security controls
- kubectl-bindrole - Find Kubernetes roles bound to a specified ServiceAccount, Group or User
- kubectl-dig - Deep Kubernetes visibility from the kubectl
- kubectl-kubesec - Scan Kubernetes pods, deployments, daemonsets and statefulsets with kubesec.io
- kubectl-who-can - Show who has permissions to <verb> <resource> in Kubernetes
- kyverno - Kubernetes Native Policy Management
- rakkess - Review access matrix for Kubernetes server resources
- rback - RBAC in Kubernetes visualizer
- trivy - A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI
- kubernetes-rbac-audit - Tool for auditing RBACs in Kubernetes
General Resources
- Kubernetes Security and Disclosure Information
- Kubernetes Security
- GKE Security Bulletins
- CKS Certified Kubernetes Security Specialist resources repo