Kubestriker: A security auditing tool for Kubernetes clusters - Help Net Security

Kubestriker: A security auditing tool for Kubernetes clusters - Help Net Security

Kubestriker is an open-source, platform-agnostic tool for identifying security misconfigurations in Kubernetes clusters.



It performs a variety of checks on a range of services and open ports on the Kubernetes platform, helps safeguard against potential attacks on Kubernetes clusters by continuously scanning, monitoring and alerting of any anomalies, allows users to see components of the Kubernetes infrastructure, and visualizes attack paths (how hackers can advance their attacks by chaining misconfigured components in the Kubernetes cluster).


Kubernetes has become a popular open-source platform for containerized workflows and a key building block for modern technology infrastructure. According to Gartner, by 2025 more than 85% of global organizations will be running containerized applications in production. This widespread popularity and lack of solid security measures in place have made Kubernetes the perfect target for attackers,” Kubestriker’s creator Vasant Chinnipilli, a security architect and DevSecOps practitioner, told Help Net Security.


“Creating and maintaining a secure Kubernetes native infrastructure is not easy, as it involves addressing the security challenges associated with numerous moving pieces in the cluster and mitigating the risk of any potential attacks. As a result, Kubestriker was born to manage and overcome these issues in the most efficient and user-friendly way.”


Kubestriker features


Chinnipilli released the first version of the tool in December 2020 and has made strong progress to date.



Kubestriker:


Scans self-managed and cloud provider-managed (Amazon EKS, Azure AKS, Google GKE) Kubernetes infrastructure
Completes reconnaissance phase checks for various services and/or open ports
Performs automated enumeration to discover misconfigured services
Can conduct both authenticated scans and unauth ..