Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or maki...
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
🧵 CLI tool for directly patching container images!
ValidKube combines the best open-source tools to help ensure Kubernetes YAML best practices, hygiene & security.
🧹 Cleaning up images from Kubernetes nodes
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT...
Import Helm Charts to OCI registries, optionally with vulnerability patching
Vulnerability scanning just got lazier
A set of curated exercises to help you prepare for the CKS exam
m9sweeper is a free and easy kubernetes security platform.
Use Trivy as a plug-in vulnerability scanner in the Harbor registry
Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive data table.
Implementing End-to-End CI/CD, IaC, and Monitoring using Kubernetes, GitOps (Argo CD), GitHub Actions, Terraform, AWS EKS, Prometheus, Grafana, and Kubecost.
A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.
Udemy Course on DevSecOps
Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
Practice questions for Certified Kubernetes Security Specialist (CKS) exam
GitHub Action to check for vulnerabilities in your container image
Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.
A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).