Sealed Secrets

Free

Encrypt your Secret into a SealedSecret, which is safe to store - even inside a public repository. The SealedSecret can be decrypted only by the controller running in the target cluster and nobody else (not even the original author) is able to obtain the original Secret from the SealedSecret. Overview: - SealedSecrets as templates for secrets - Public key / Certificate Scopes Installation: - Controller - Kustomize - Helm Chart - Kubeseal - Homebrew - MacPorts - Linux Installation from source Upgrade Usage: - Managing existing secrets - Patching existing secrets - Update existing secrets - Raw mode (experimental) Validate a Sealed Secret Secret Rotation: - Sealing key renewal - User secret rotation - Early key renewal Common misconceptions about key renewal Manual key management (advanced) Re-encryption (advanced) Details (advanced) Crypto Developing FAQ: - Will you still be able to decrypt if you no longer have access to your cluster? - How can I do a backup of my SealedSecrets? - Can I decrypt my secrets offline with a backup key? - What flags are available for kubeseal? - How do I update parts of JSON/YAML/TOML/.. file

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

OpenIAM

OpenIAM offers a unified identity governance platform featuring CIAM, MFA, and PAM integration.

Free

IAM

Policy Sentry IAM Least Privilege Policy Generator

A tool that generates least privilege IAM policies for AWS services

Free

IAM

Confidant

A secret keeper that stores secrets in DynamoDB, encrypted at rest.

Free

IAM

Okta Workforce Identity Cloud

Okta Workforce Identity Cloud is an identity and access management platform that provides secure, streamlined access for an organization's workforce across various applications and resources.

Commercial

IAM

IAMSpy

A library utilizing Z3 prover to analyze AWS IAM policies.

Free

IAM

Dufflebag

A tool for searching through public EBS snapshots for secrets, organized as an Elastic Beanstalk application.

Free

IAM

PowerUp

PowerUp aims to be a clearinghouse of common Windows privilege escalation vectors that rely on misconfigurations.

Free

IAM

Passpie

Command-line password manager with GnuPG encryption and colorful interface.

Free

IAM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

RoboShadow

A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.

Commercial

Vulnerability Management

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security