#Docker #Kubernetes #подборка
– Grype – a tool for scanning vulnerabilities in containers.
– Trivy – search for vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds.
– Clair is a container security analysis tool that detects known vulnerabilities in container images.
– Kube-scan is a security scanning tool for Kubernetes clusters. Kube-Scan will analyze and provide a risk score from 0 (no risk) to 10 (high risk).
– Kube-bench is a tool for automated verification of Kubernetes clusters compliance with security standards. It audits the cluster for compliance with CIS recommendations.
– Falco is a tool for detecting security breaches in container environments in real time. It provides the ability to monitor and respond to potential security threats in containers, as well as allows you to set security policies and immediately respond to abnormal behavior.
