[KubeSec] Security risk analysis for Kubernetes resources

Posted on By nim No Comments on [KubeSec] Security risk analysis for Kubernetes resources

Kubesec is an open-source Kubernetes security scanner and analysis tool. It scans your Kubernetes cluster for common exploitable risks such as privileged capabilities and provides a severity score for each found vulnerability.

Security risk analysis for Kubernetes resources.
Take in a single YAML file as input.
+ One YAML can connect multiple Kubernetes resources.
Kubesec is available as,
+ Docker container image at docker.io/kubesec/kubesec:v2
+ Linux/MacOS/Win binary (get the latest release)
+ Kubernetes Admission Controller
+ Kubectl plugin

Chúng ta có file

Có thể scan offline bằng run docker

Scan online bằng API.

Bạn có thể vào trang web là 1 số example:
https://kubesec.io/

DevSecOps

More Related Articles

[DevSecOps/TruffleHog] Find your repository’s secrets, sensitive words, and credentials. DevSecOps
[Security] Find vulnerabilities in your EC2 Linux instance DevSecOps
[DevSecOps] What is DevSecOps DevSecOps
[Gitleaks/njsscan/semgrep] Secure Your code by CAST and SAST tools CI/CD
[DAST] OWASP ZAP – Understand about Dynamic Application Security Testing DevSecOps
[Trivy] Protect your application by Trivy DevSecOps

Leave a Reply

Your email address will not be published. Required fields are marked *