Kube-bench vs kubescape

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/kubernetes
#Security #security-tools #Docker #Containers #vulnerability-scanners

Our great sponsors
  • Scout APM - Less time debugging, more time building
  • SonarQube - Static code analysis for 29 languages.
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • trivy

    Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets

    Another one I would recommend looking at, if you want to do scanning of workload manifests (e.g. deployments) is Trivy (https://github.com/aquasecurity/trivy) which has some cool IaC scanning features.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts