Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
翻译 - Kubernetes山羊是一个“易受设计攻击的” Kubernetes集群。
📦 Make security testing of K8s, Docker, and Containerd easier.
翻译 - CDK是一个开放源代码的容器渗透工具包,可在不依赖任何操作系统的情况下,在不同的瘦容器中进行稳定利用。它带有有用的网络工具,许多强大的PoC / EXP可帮助您轻松逃脱容器并接管K8s集群。
veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集
🧵 CLI tool for directly patching container images!
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
A Blazing fast Security Auditing tool for Kubernetes
翻译 - Kubernetes的一种快速创新的安全审核工具
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits...
Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)
Help building an adaptive and fine-grained pod security policy
awesome resources about cloud native security 🐿
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
🔐 Docker Container for Penetration Testing & Security
Inspect certificate authorities in container images
🧰 Multi Tool Kubernetes Pentest Image
🏴☠️ Hacking Guides, Demos and Proof-of-Concepts 🥷
OpenShift Guide. Learn about the Red Hat OpenShift Container Platform, Data Science, Code Ready Containers, Podman, Buildah, and Kubernetes.
A collection of tools to improve your containerized apps security posture
A container image that exfiltrates the underlying container runtime to a remote server
一个由长亭自研,直观而可扩展的容器安全 SDK