Looking for Kubernetes Security Testing Tools
34 views
Skip to first unread message
kiran kumar dachiraju
Aug 25, 2018, 1:02:40 AM8/25/18
to null-...@googlegroups.com
Hello All,
I am new to Kubernetes pentesting and looking for open source tools and good resources to start and learn about kube pentesting.
I am new to Kubernetes pentesting and looking for open source tools and good resources to start and learn about kube pentesting.
I have found one i.e kube-hunter and looking similar kind of tools.
Abhay Rana
Aug 25, 2018, 3:36:09 AM8/25/18
to null-...@googlegroups.com
There are a few tools that run the CIS Kubenernetes benchmarks for
you. These will only work if you are running a self-managed kubernetes
cluster though (since they audit the control plane mostly). They might
work partially on managed clusters, but I'm not sure.
Benchmark: https://www.cisecurity.org/benchmark/kubernetes/
Tools:
- https://github.com/dev-sec/cis-kubernetes-benchmark
- https://github.com/aquasecurity/kube-bench (Recommended)
- https://github.com/neuvector/kubernetes-cis-benchmark
--
Nemo
https://about.me/n3m0
you. These will only work if you are running a self-managed kubernetes
cluster though (since they audit the control plane mostly). They might
work partially on managed clusters, but I'm not sure.
Benchmark: https://www.cisecurity.org/benchmark/kubernetes/
Tools:
- https://github.com/dev-sec/cis-kubernetes-benchmark
- https://github.com/aquasecurity/kube-bench (Recommended)
- https://github.com/neuvector/kubernetes-cis-benchmark
--
Nemo
https://about.me/n3m0
Reply all
Reply to author
Forward
0 new messages