Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → klustair → klustair

klustair / klustair

Licence: Apache-2.0 License

(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit

Programming Languages

139335 projects - #7 most used programming language

14818 projects

77523 projects

Labels

kubernetes security kubernetes-cluster vulnerability vulnerability-scanners

Projects that are alternatives of or similar to klustair

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Stars: ✭ 114 (+660%)

Mutual labels: vulnerability, vulnerability-scanners

A Binary Ninja plugin for vulnerability research.

Stars: ✭ 203 (+1253.33%)

Mutual labels: vulnerability, vulnerability-scanners

Greenbone Vulnerability Manager

Stars: ✭ 140 (+833.33%)

Mutual labels: vulnerability, vulnerability-scanners

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Stars: ✭ 847 (+5546.67%)

Mutual labels: vulnerability, vulnerability-scanners

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Stars: ✭ 269 (+1693.33%)

Mutual labels: vulnerability, vulnerability-scanners

Openvas Scanner

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Stars: ✭ 1,056 (+6940%)

Mutual labels: vulnerability, vulnerability-scanners

Advanced vulnerability scanning with Nmap NSE

Stars: ✭ 2,305 (+15266.67%)

Mutual labels: vulnerability, vulnerability-scanners

The Correlated CVE Vulnerability And Threat Intelligence Database API

Stars: ✭ 826 (+5406.67%)

Mutual labels: vulnerability, vulnerability-scanners

scan-cli-plugin

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Stars: ✭ 135 (+800%)

Mutual labels: vulnerability, vulnerability-scanners

A static binary vulnerability scanner

Stars: ✭ 47 (+213.33%)

Mutual labels: vulnerability, vulnerability-scanners

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Stars: ✭ 9,673 (+64386.67%)

Mutual labels: vulnerability, vulnerability-scanners

SQL Injection Payload

SQL Injection Payload List

Stars: ✭ 62 (+313.33%)

Mutual labels: vulnerability, vulnerability-scanners

SQL Vulnerability Scanner

Stars: ✭ 926 (+6073.33%)

Mutual labels: vulnerability, vulnerability-scanners

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Stars: ✭ 10,451 (+69573.33%)

Mutual labels: vulnerability, vulnerability-scanners

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Stars: ✭ 18 (+20%)

Mutual labels: vulnerability, vulnerability-scanners

web scanner - exploitation - information gathering

Stars: ✭ 159 (+960%)

Mutual labels: vulnerability, vulnerability-scanners

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

Stars: ✭ 486 (+3140%)

Mutual labels: vulnerability, vulnerability-scanners

hack tools

Stars: ✭ 488 (+3153.33%)

Mutual labels: vulnerability, vulnerability-scanners

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

Stars: ✭ 241 (+1506.67%)

Mutual labels: vulnerability, vulnerability-scanners

browserrecon-php

Advanced Web Browser Fingerprinting

Stars: ✭ 29 (+93.33%)

Mutual labels: vulnerability, vulnerability-scanners

View All Similar Projects ➔

KlustAIR Scanner

The Klustair scanner scanns your Kubernetes namespaces for the used images and submits them to Anchore. This is the scanner part.

INFORMATION This runner is deprecated in favor of the new klustair-cli. For Klustair newer than v0.6.0 please use the klustair-cli written in GO.

Related Klustair projects:

Klustair Frontend to view the scanner results
Klustair Helm charts to spin up Anchore and Klustair

Related opensource projects

trivy A Simple and Comprehensive Vulnerability Scanner for Containers and other Artifacts
(DEPRECATED) anchore-engine A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
kubeaudit kubeaudit helps you audit your Kubernetes clusters against common security controls

Requirements

Python 3
Running Anchore (See docker-compose-anchore.yaml)

Usage

usage: runner.py [-h] [-v] [-n NAMESPACES] [-N NAMESPACESBLACKLIST]
                 [-k KUBEAUDIT] [-l LABEL] [-a] [-t] [-c TRIVYCREDENTIALS]

optional arguments:
  -h, --help            show this help message and exit
  -v, --verbose         increase output verbosity
  -n NAMESPACES, --namespaces NAMESPACES
                        Coma separated whitelist of Namespaces to check
  -N NAMESPACESBLACKLIST, --namespacesblacklist NAMESPACESBLACKLIST
                        Coma separated blacklist of Namespaces to skip
  -k KUBEAUDIT, --kubeaudit KUBEAUDIT
                        Coma separated list of audits to run. default: 'all',
                        disable: 'none'
  -l LABEL, --label LABEL
                        A optional title for your run
  -a, --anchore         Run Anchore vulnerability checks
  -t, --trivy           Run Trivy vulnerability checks
  -c TRIVYCREDENTIALSPATH, --trivycredentialspath TRIVYCREDENTIALSPATH
                        Path to repo credentials for trivy
  -ld LIMITDATE, --limitDate LIMITDATE
                        Remove reports older than X days
  -ln LIMITNR, --limitNr LIMITNR
                        Keep only X reports
  -C CONFIGKEY, --limitNr CONFIGKEY
                        Load remote configuration from frontend
  -H APIHOST, --limitNr APIHOST
                        Remote API-host address [example: https://localhost:8443]

ENV vars

export KLUSTAIR_NAMESPACES=
export KLUSTAIR_NAMESPACEBLACKLIST=
export KLUSTAIR_KUBEAUDIT=
export KLUSTAIR_TRIVYCREDENTIALSPATH=

Run in Docker

cp .env.example .env
vim .env
docker-compose up -d

or

docker-compose up -d -e PATH_LOCAL_KUBECONFIG=~/.kube/config

Start Anchore locally

curl https://docs.anchore.com/current/docs/engine/quickstart/docker-compose.yaml > docker-compose-anchore.yaml
docker-compose -f docker-compose-anchore.yaml up -d

develop

python3 -m venv env
source env/bin/activate
pip install -r requirements.txt

deactivate

build

cp .env.example .env
vim .env
docker compose build

or

docker compose build

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 15

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (1) 🔗