OWASP / KubeLight

OWASP Kubernetes security and compliance tool [WIP]

https://docs.KubeLight.com

Apache License 2.0

104 stars 16 forks source link

cis compliance containers cve-scanning devsecops docker kubernetes kubernetes-security nsa owasp pci-dss python sbom scanner security security-tools vulnerability-management

readme

KubeLight Logo

OWASP KubeLight - Kubernetes Security Scanner

Scan your Kubernetes Cluster for Security & Compliance

Scan K8s clusters to detect Misconfiguration.
Lightweight, Pure python, fast, multithreaded tool.
NoSQL Query Engine.
Realtime alerts on Slack
SBOM generation and Image Vulnerability Scan.
Compliance Reports for PCI-DSS, SOC2, NSA and CIS Benchmarks.

Note - We are releasing above points in version 0.0.5

TODOS

[ ] Kubernetes Pentest.
[ ] Container Runtime security support - Sydig Falco and Machine learning
[ ] Intiuitive UI and Dashboards
[ ] CI/CD support.

Links

OWASP Kubernetes Scanner