Skip to content
/ k8s-security Public

Kubernetes security related tutorials with examples

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

warolv/k8s-security

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits

falco-k8s-audit-logs

falco-k8s-audit-logs

 
 

images

images

 
 

k8s-ns-rbac/helm

k8s-ns-rbac/helm

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

falco-k8s-audit-logs.md

falco-k8s-audit-logs.md

 
 

falco-syscalls.md

falco-syscalls.md

 
 

secure-ns-k8s-rbac.md

secure-ns-k8s-rbac.md

 
 

Repository files navigation

A series of tutorials about Kubernetes security

1. Secure namespaces in Kubernetes cluster using RBAC

k8s-security

In this tutorial, I will show how to secure ‘system‘ namespaces in EKS cluster by user access.

"List of namespaces with limited access: [kube-system, monitoring]

2. Threat detection with Falco and EKS Audit Logs

k8s-security

In this tutorial, I will show how to:

  • Install Falco to your EKS cluster using helm chart
  • Enable EKS audit logs for your cluster
  • Detect security events based on EKS audit logs activity.
  • Overview of most useful rules for my opinion

3. Threat detection with Falco on EKS and using kernel module driver

k8s-security

In previous tutorial I used Falco plugin for K8s Audit Logs

And for this tutorial I will use driver called Kernel Module, in order to monitor system events from the kernel and trying to detect malicious behaviors on Linux systems.

About

Kubernetes security related tutorials with examples

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages