[KubeSec] Security risk analysis for Kubernetes resources

Posted on By nim No Comments on [KubeSec] Security risk analysis for Kubernetes resources

Kubesec is an open-source Kubernetes security scanner and analysis tool. It scans your Kubernetes cluster for common exploitable risks such as privileged capabilities and provides a severity score for each found vulnerability.

Security risk analysis for Kubernetes resources.
Take in a single YAML file as input.
+ One YAML can connect multiple Kubernetes resources.
Kubesec is available as,
+ Docker container image at docker.io/kubesec/kubesec:v2
+ Linux/MacOS/Win binary (get the latest release)
+ Kubernetes Admission Controller
+ Kubectl plugin

Chúng ta có file

Có thể scan offline bằng run docker

Scan online bằng API.

Bạn có thể vào trang web là 1 số example:
https://kubesec.io/

DevSecOps

More Related Articles

[DevSecOps/TruffleHog] Find your repository’s secrets, sensitive words, and credentials. DevSecOps
[Falco] Detect and watch all commands in your Kubernetes cluster DevSecOps
[DAST] OWASP ZAP – Understand about Dynamic Application Security Testing DevSecOps
[DevSecOps] Scan Terraform DevSecOps
How do companies ship code to production? Coding
[DevSecOps] Remove the secrets on Git. DevSecOps

Leave a Reply

Your email address will not be published. Required fields are marked *