Securing Applications in Kubernetes Engine Logo

Securing Applications in Kubernetes Engine

0
Free
Updated 11 March 2025
Cloud Security
Kubernetes
Security
Access Control
Pod Security
Container Security
Apparmor
Visit Website

This tutorial demonstrates how Kubernetes Engine security features can be used to grant varying levels of privilege to applications, based on their particular requirements. When configuring security, applications should be granted the smallest set of privileges that still allows them to operate correctly. In a Kubernetes cluster, these privileges can be grouped into the following broad levels: Host access: describes what permissions an application has on its host node, outside of its container. This is controlled via Pod and Container security contexts, as well as AppArmor profiles. Network access: describes what other resources or workloads an application can access via the network.

FEATURES

EXPLORE BY TAGS

Kubernetes

Security

Access Control

Pod Security

Container Security

Apparmor

SIMILAR TOOLS

Perimeterator Logo
Perimeterator

A small project for continuous auditing of internet-facing AWS services

Free
Cloud Security
kube-bench Logo
kube-bench

Kube-bench is a tool for checking Kubernetes security based on CIS Kubernetes Benchmark.

Free
Cloud Security
haktrails Logo
haktrails

Golang client for querying SecurityTrails API data

Free
Cloud Security
Wiz Logo
Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Tenable Cloud Security Logo
Tenable Cloud Security

A cloud native application protection platform that provides unified visibility, risk assessment, and remediation capabilities across multi-cloud and hybrid environments.

Commercial
Cloud Security
LogRythm SIEM Logo
LogRythm SIEM

LogRhythm SIEM is a comprehensive security information and event management platform that collects, analyzes, and responds to security events across an organization's IT infrastructure.

Commercial
Cloud Security
DataCop Logo
DataCop

DataCop is a custom AWS framework for mitigating S3 bucket attack vectors based on customer configuration.

Free
Cloud Security
Nuvola Logo
Nuvola

Nuvola is a tool for security analysis on AWS environments with a focus on creating a digital twin of cloud platforms.

Free
Cloud Security
Terraform Module: AWS Secure Baseline Logo
Terraform Module: AWS Secure Baseline

A Terraform module to set up a secure AWS account configuration baseline

Free
Cloud Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy