Securing Applications in Kubernetes Engine Logo

Securing Applications in Kubernetes Engine

0
Free
Visit Website

This tutorial demonstrates how Kubernetes Engine security features can be used to grant varying levels of privilege to applications, based on their particular requirements. When configuring security, applications should be granted the smallest set of privileges that still allows them to operate correctly. In a Kubernetes cluster, these privileges can be grouped into the following broad levels: Host access: describes what permissions an application has on its host node, outside of its container. This is controlled via Pod and Container security contexts, as well as AppArmor profiles. Network access: describes what other resources or workloads an application can access via the network.

FEATURES

ALTERNATIVES

A script and library for identifying risks in AWS IAM configuration

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.

A project that sets up partitioned Athena tables for CloudTrail logs and updates partitions nightly.

A publicly open storage viewer for various storage services.

A set of tools for fingerprinting and exploiting Amazon cloud infrastructures

Implements a cloud version of the Shadow Copy attack against domain controllers in AWS, allowing theft of domain user hashes.

A cloud security platform that combines Kubernetes security scanning, runtime monitoring, and cloud security posture management using Kubescape and eBPF technology.

Commercial
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved