Container & Kubernetes Security

kube-bench

Container & Kubernetes Security

A tool to ensure Kubernetes deployments adhere to industry-standard security best practices as outlined in the CIS Kubernetes Benchmark.

Cosign

Container & Kubernetes Security

Code signing and transparency for containers and binaries

Harbor

Container & Kubernetes Security

An open source trusted cloud native registry project that stores, signs, and scans content.

Kubescape

Container & Kubernetes Security

A security platform for Kubernetes that identifies and remediates misconfigurations, vulnerabilities, and compliance issues.

Kubernetes Goat

Container & Kubernetes Security

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground

Hadolint

Container & Kubernetes Security

Dockerfile linter, validate inline bash, written in Haskell

KubeArmor

Container & Kubernetes Security

Runtime Security Enforcement System for Kubernetes environments, leveraging Linux Security Modules for workload hardening and policy enforcement.

Triton DataCenter

Container & Kubernetes Security

A cloud management platform with first class support for containers.

Anchore Kubernetes Inventory

Container & Kubernetes Security

A tool that polls Kubernetes Cluster API(s) to provide visibility into containers and images in use within Kubernetes clusters.

Kubewatch

Container & Kubernetes Security

A tool for monitoring and notifying teams about resource changes in Kubernetes clusters.

Microsoft Container Security Toolkit

Container & Kubernetes Security

A toolkit designed to enhance the security of containerized applications throughout their lifecycle, addressing vulnerabilities, misconfigurations, and runtime security challenges.

semgr8s

Container & Kubernetes Security

Semgrep-based Policy Controller for Kubernetes