Madhu Akula

Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations, and compliance violations across your Kubernetes clusters, manifests, and CI/CD pipelines.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

The Swiss Army Container for Cloud Native Security. Container with all the list of useful tools/commands while hacking and securing Containers, Kubernetes Clusters, and Cloud Native workloads.

Dockerfile Security Checker using OPA Rego policies with Conftest

Ansible Playbooks for Security Automation with Ansible2 book

Windows one line commands that make life easier, shortcuts and command line fu.

Command line hacked-emails

Automated PAN Firewall Custom URL Category using Python and PAN API

An Introduction to Containers using Docker and using it for Security Automation - null Bangalore Puliya

AWS IAM Analysis utility to gather entire useful information from an AWS account

Curating the best DevSecOps resources and tooling.

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

What is this secret?

Automating Documentation, Presentation, Knowledge base using Markdown (Zero to Hero)

DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source

A Microservices-based framework for the study of Network Security and Penetration Test techniques

:keyboard: Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

Mac in Docker! Run near native OSX-KVM in Docker! X11 Forwarding!

Links and resources for the O'Reilly Kubernetes Security book

Run GUI applications and desktops in docker. Focus on security.

Madhu Akula's website

No description.

some useful scripts

OWASP WebGoat.NET

All Algorithms implemented in Python

💰💸☁️For those interested in running Kubernetes in highly regulated environments, particularly financial services

No description.

Security Remediation Guides

Proof-of-Concept python script that implements DNS spoofing attack in Kubernetes environment from a pod located on a Worker server

A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.

Defcon24 Workshop Contents : Ninja Level Infrastructure Monitoring

Lab Material for the Two-Day Defending Modern DevOps Environments Course

Algorithms Implemented in GoLang

Docker container for Markdown based Raneto Knowledgebase

No description.

Run macOS on QEMU/KVM. With OpenCore Now! No free support is provided. Open PR(s) to fix problems.

null Bangalore Public Bachaav 10 December 2016 Automated Infrastructure Security Monitoring & Defence

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

All Algorithms implemented in Java

Easily find secrets in files, directories, and repositories. Stop leaking secrets using git hooks.

A curated list of kubernetes security related resources (Tools, Blog Posts, Videos, Docs, Books, etc.)

Table of Contents Page (toc-page) is a minimal, single-page theme for Hugo

A utility for crawling an AWS account and exporting all its resources for further analysis.

🥋 Framework for improving the IT-Security of your teams through gamification and self-assessment.

Docker container for running keepnote GUI application

Tool to achieve policy driven vetting of open source dependencies

Decentralized Finance threats, attack vectors, and mitigation strategies resource repo

A JSX-based page builder for creating beautiful websites without writing code

Official repository for the BPF Performance Tools book

A proof-of-concept tool for reading OS X keychain passwords

Source text and experimental data for our paper describing XDP

:star2: A 30 day learning challenge for VueJS by building simple yet cool projects :muscle:

A simple file-based scanner to look for potential AWS access and secret keys in files

Files accompanying helm security blog post

Sudo <= 1.8.14 Local Privilege Escalation and vulnerable container

Push-button Security Operations Center using Kubernetes

No description.

No description.

Yet another query language. Mirror of code maintained at opendev.org.

The source for https://themes.gohugo.io

cloudquery transforms your cloud infrastructure into SQL database for easy monitoring, governance and security.

CloudQuery Provider for Okta

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Java web common vulnerabilities and security code which is base on springboot and spring security

like grep but for code: fast and syntax-aware semantic code pattern for many languages

Kubernetes Easter CTF

This is fully Kubernetes-native testbed environment. Please contribute for add additional OSS (Vitess, NATS, etc) or microservices.

Lobsters, the Hacker News clone, on Kubernetes

Example code and files from "Prometheus: Up and Running"

Free Antivirus for S3 Buckets

Play with docker class-room repo

Notes about attacking Jenkins servers

Resources for aspiring speakers

My fork of @jpetazzo fantastic Docker Orchestration Workshop given dozens of times around the world

Palo Alto Networks Command Line Utility

Reveal JS presentation with reveal-md using Docker

Security Headers of any website

A tool to index your papers/interesting links/... and quickly search through them

a single-page speed-dial theme for Hugo

No description.

Lateral Movement graph for Azure Active Directory

koans for go

Code and description of our "from problem space to solution space" workshop

Proof of concept implementation of a scenario using Open Policy Agent for microservices authorization in API Gateway (Traefik).

No description.

Elasticsearch-Logstash-Kibana

Bootstrap Kubernetes the hard way on Vagrant on Local Machine. No scripts.

No description.

Framework for running BPF programs with rules on Linux as a daemon. Container aware.

Certificate Transparency Log aggregation, parsing, and streaming service written in Elixir

This command line tool counts the number of resources in different categories across Amazon regions.

No description.

Starter Template for Vue + AWS Lambda with Netlify

CodeDeploy demo using Terraform and Sample application

https://nostarch.com/RaspberryPiProject

No description.

No description.

No description.

Alpine docker container for gitbook

Content for OWASP Summit 2017 site

Base Server and Laptop Ansible Role

Docker container for https://github.com/jordansissel/fpm

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Flashpaper is a simple go-based service for creating one time use links to text data or individual files.

A template for self-hosted bookmarks using HTML & jQuery.

No description.

No description.

Single stop for all the official docker images in the docker hub.

Personal Resume

No description.

Ghost blog basic setup using Vagrant