Top 10 Go kubernetes-security Projects

• kube-bench

  23 6,635 8.4 Go

  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

  

Project mention: Evaluating and securing your Kubernetes infrastructure with kube-bench | dev.to | 2023-08-25

However, no matter how well our applications are secured, the security of our entire IT environment ultimately depends on the security of our infrastructure. Therefore, in the lab to follow, we will shift our focus away from Kubernetes workloads and instead explore how we can evaluate and improve upon the security of our Kubernetes clusters with kube-bench, the industry-leading Kubernetes benchmarking solution developed by Aqua.

• CDK

  4 3,620 2.8 Go

  📦 Make security testing of K8s, Docker, and Containerd easier.

  

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• stratus-red-team

  8 1,618 8.8 Go

  :cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

  

• kubeclarity

  5 1,254 8.2 Go

  KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems

  

Project mention: Building Secure Docker Images for Production - Best Practices | dev.to | 2023-06-30

In the following steps, we use a local Kubernetes cluster (such as kind) to test the image. With the cluster up and running, let's install some tooling to help us with image scanning. In this case, we're using KubeClarity. Follow the installation instructions in the README to install it into your development cluster.

• paralus

  4 926 8.1 Go

  All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.

  

• constellation

  31 863 9.9 Go

  Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.

  

Project mention: Using "Confidential Computing" with Hetzner? (Intel SGX/TDX, AMD SEV/SNP) | /r/hetzner | 2023-05-16

A lot happening in Europe, Enclaive provides encrypting containers (GitHub), Edgeless Systems provides a whole encrypted k8s with constellation (GitHub), then there are other players like scontain and secustack.

• KubeHound

  2 628 9.0 Go

  Kubernetes Attack Graph

  

Project mention: KubeHound: Kubernetes Attack Graph | /r/blueteamsec | 2023-10-09

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• eBPF-Guide

  12 452 4.9 Go

  eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

• rbac-police

  8 320 0.0 Go

  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego

  

• managed-kubernetes-auditing-toolkit

  1 228 7.6 Go

  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.

  

Project mention: Auditing AWS EKS Pod Permissions | dev.to | 2024-02-29

Datadog also maintains the Managed Kubernetes Auditing Toolkit (MKAT), which can be installed to perform similar permission checks.

Go kubernetes-security related posts

• Evaluating and securing your Kubernetes infrastructure with kube-bench
  1 project | dev.to | 25 Aug 2023
• Building Secure Docker Images for Production - Best Practices
  4 projects | dev.to | 30 Jun 2023
• Security starts before the production deployment
  2 projects | dev.to | 15 Jun 2023
• Using "Confidential Computing" with Hetzner? (Intel SGX/TDX, AMD SEV/SNP)
  1 project | /r/hetzner | 16 May 2023
• A tool that scans repos and workout latest version and pull date of installed version + how to lock down repos (via some cluster policy?)
  2 projects | /r/kubernetes | 27 Apr 2023
• Where are you hosting your Managed Kubernetes and why?
  1 project | /r/kubernetes | 5 Mar 2023
• Why is K8 an issue when compliances become important for enterprises (HIPAA)
  1 project | /r/kubernetes | 2 Mar 2023
• A note from our sponsor - InfluxDB
  www.influxdata.com | 23 Apr 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Go projects with our weekly report!