Kube-bench Alternatives
Similar projects and alternatives to kube-bench
-
-
-
Scout APM
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
-
trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
-
kubeaudit
kubeaudit helps you audit your Kubernetes clusters against common security controls
-
-
-
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
-
SonarLint
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
-
checkov
Prevent cloud misconfigurations during build-time for Terraform, CloudFormation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
-
-
-
-
Grafana
The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.
-
-
Nacos
an easy-to-use dynamic service discovery, configuration and service management platform for building cloud native applications.
-
-
-
cadvisor
Analyzes resource usage and performance characteristics of running containers.
-
-
Gravitational Teleport
Certificate authority and access plane for SSH, Kubernetes, web apps, databases and desktops
-
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
kube-bench reviews and mentions
-
What are some fundamental security practices for the self hosted k8s cluster?
Check this out: kube-bench - CIS Benchmark
-
Top 6 Kubernetes Security Tools
Kube-bench, written as a Go application, is deployable as a container. Ready-made job.yaml files make it easy to run Kube-bench inside a Kubernetes cluster or on a managed Kubernetes service, such as Azure Kubernetes Service (AKS), Amazon Elastic Kubernetes Service (EKS), Google Kubernetes Engine (GKE), or OpenShift. Here's a link to Kube-Bench on Github
-
Introduction to Kubernetes Pentesting
kube-bench - Checks whether Kubernetes is deployed securely by running CIS Kubernetes Benchmark
-
Container security best practices: Comprehensive guide
Other tools you can use are linux-bench, docker-bench, kube-bench, kube-hunter, kube-striker, Cloud Custodian, OVAL, and OS Query.
- 27 open-source tools that can make your Kubernetes workflow easier 🚀🥳
-
Kubernetes Security Checklist 2021
Cluster Configuration should be audited regularly (Kube-bench, Kube-hunter, Kubestriker)
- aquasecurity/kube-bench - Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
-
EKS and Kube-bench
Thank you for your response, yes i have run the eks job as dictated here - i just wanted to make sure that there is nothing more to do - correct?
-
2 Widespread Attacks on Your Containerized Environment and 7 Rules to Prevent it.
Also, I use the security tool Kube-bench that covers vulnerabilities scanning only. The Kubebench brings an additional layer to your cluster security monitoring. There are plenty of security tools available for Kubernetes.
-
Amazon EKS Security Assessment - Kube Bench
The Center for Internet Security provides many guidelines and benchmark tests for best practices in securing your code. The CIS has published a benchmark for Kubernetes. The kube-bench is an open-source tool that checks whether Kubernetes is deployed securely by running the CIS benchmark for Kubernetes checks. It's written as a Go application and also distributed as a container. Each test is defined in the YAML and also supports JSON-format output that can be used to evolve along wiht Kubernetes and to integrate with automaton tools.
-
Openshift CIS_Benchmark
New to devsecop here. I know that we can check Kubernetes with Kube-Benchmark. Is there a similar tool for Openshift or Kube-Benchmark can be used to check Openshift? Thank you
-
docktor - A tool for generating health checks and improving security for running Docker containers and images
How does it compare to https://github.com/aquasecurity/kube-bench ?
-
How secure is your Kubernetes cluster?
Here is a list of tools I like for security checks : Kube-hunter : https://kube-hunter.aquasec.com/ Kube-bench : https://github.com/aquasecurity/kube-bench Kube-linter : https://docs.kubelinter.io/#/
-
Integration of AWS Security Hub and kube-bench
Integrating kube-bench with AWS Security Hub https://github.com/aquasecurity/kube-bench/blob/master/docs/asff.md
Stats
aquasecurity/kube-bench is an open source project licensed under Apache License 2.0 which is an OSI approved license.
Popular Comparisons
There are 8 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.