Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/OWASP/KubeLight

OWASP Kubernetes security and compliance tool [WIP]
https://github.com/OWASP/KubeLight

cis compliance containers cve-scanning devsecops docker kubernetes kubernetes-security nsa owasp pci-dss python sbom scanner security security-tools vulnerability-management

Last synced: 26 days ago
JSON representation

OWASP Kubernetes security and compliance tool [WIP]

Host: GitHub
URL: https://github.com/OWASP/KubeLight
Owner: OWASP
License: apache-2.0
Created: 2022-11-28T21:16:32.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2023-06-06T10:12:31.000Z (over 1 year ago)
Last Synced: 2024-08-03T16:08:39.689Z (4 months ago)
Topics: cis, compliance, containers, cve-scanning, devsecops, docker, kubernetes, kubernetes-security, nsa, owasp, pci-dss, python, sbom, scanner, security, security-tools, vulnerability-management
Language: Python
Homepage: https://docs.KubeLight.com
Size: 171 KB
Stars: 100
Watchers: 8
Forks: 17
Open Issues: 7
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-kubernetes-security - kubelight - WIP but promising - OWASP project to scan your Kubernetes Cluster for Security & Compliance. (Open Source Projects)

README

KubeLight Logo

[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://github.com/owasp/kubelight/blob/main/LICENSE)

# OWASP KubeLight - Kubernetes Security Scanner
`Scan your Kubernetes Cluster for Security & Compliance`

1. Scan K8s clusters to detect Misconfiguration.
2. Lightweight, Pure python, fast, multithreaded tool.
3. NoSQL Query Engine.
4. Realtime alerts on Slack
5. SBOM generation and Image Vulnerability Scan.
6. Compliance Reports for PCI-DSS, SOC2, NSA and CIS Benchmarks.

Note - We are releasing above points in version 0.0.5

TODOS
- [ ] Kubernetes Pentest.
- [ ] Container Runtime security support - Sydig Falco and Machine learning
- [ ] Intiuitive UI and Dashboards
- [ ] CI/CD support.

### Links
* [OWASP Kubernetes Scanner ](https://owasp.org/www-project-kubernetes-scanner/)