rbac-lookup
k8s-security-demo
rbac-lookup | k8s-security-demo | |
---|---|---|
3 | 1 | |
838 | 5 | |
1.2% | - | |
3.7 | 0.0 | |
9 days ago | about 2 years ago | |
Go | Go | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
rbac-lookup
-
Is there a way to see exactly what permissions the built-in group "system:readonly" has?
try using a tool such as rbac-lookup to find roles attached to a principal name https://github.com/FairwindsOps/rbac-lookup
-
Kubernetes Hardening Tutorial Part 3: Authn, Authz, Logging & Auditing
RBAC Lookup is a CLI that allows you to easily find Kubernetes roles and cluster roles bound to any user, service account, or group name. It helps to provide visibility into Kubernetes auth.
-
Making Kubernetes Operations Easy with kubectl Plugins
rbac-lookup - Similar to the first plugin we mentioned, this plugin also helps with RBAC in your cluster. This can be used to perform reverse lookup of roles, giving you a list of roles that user, service account or group has assigned. For example, to find roles bound to service account named my-sa you use the following - kubectl rbac-lookup my-sa --kind serviceaccount --output wide.
k8s-security-demo
-
Kubernetes Hardening Tutorial Part 3: Authn, Authz, Logging & Auditing
git clone https://github.com/IronCore864/k8s-security-demo.git git fetch origin pull/12/head git checkout -b aws_eks FETCH_HEAD cd k8s-security-demo # edit the config.tf and update the AWS region accordingly # configure your aws_access_key_id and aws_secret_access_key terraform init terraform apply
What are some alternatives?
rbac-manager - A Kubernetes operator that simplifies the management of Role Bindings and Service Accounts.
krew - 📦 Find and install kubectl plugins
k9s - 🐶 Kubernetes CLI To Manage Your Clusters In Style!
kubectl-kubesec - Security risk analysis for Kubernetes resources
rakkess - Review Access - kubectl plugin to show an access matrix for k8s server resources
kubectl-dig - Deep kubernetes visibility from the kubectl
kubelogin - kubectl plugin for Kubernetes OpenID Connect authentication (kubectl oidc-login)
ksniff - Kubectl plugin to ease sniffing on kubernetes pods using tcpdump and wireshark
rbac-lookup - Easily find roles and cluster roles attached to any user, service account, or group name in your Kubernetes cluster [Moved to: https://github.com/FairwindsOps/rbac-lookup]
kubectl-neat - Clean up Kubernetes yaml and json output to make it readable
kubepug - Kubernetes PreUpGrade (Checker)
kubectl-tree - kubectl plugin to browse Kubernetes object hierarchies as a tree 🎄 (star the repo if you are using)