Octarine, a startup that helps automate security of Kubernetes workloads, released an open-source scanning tool called Kube-scan, designed to help developers understand the level of security risk in their Kubernetes clusters.
They also open-sourced a second tool called The Kubernetes Common Configuration Scoring System, or KCCSS for short, which is the underlying configuration framework used in Kube-scan.
“There are 30 security settings in Kubernetes, and Kube-scan can help you see where you might be vulnerable on any one of them, measured on a scale of 0-10, with 10 being extremely vulnerable.”
Why are there so many security companies focused on k8s/containers/cloud native?
Does it say something about the (in)security of k8s, containers and 'cloud native' that so many companies are focused on providing virus scanning functionality for it compared to traditional linux which surely outnumbers by a very large margin those installations?
It's a very sad time that linux has now devolved so badly that people have to resort to installing a mcafee virus scanner.
3 comments
[ 3.8 ms ] story [ 22.1 ms ] threadOctarine, a startup that helps automate security of Kubernetes workloads, released an open-source scanning tool called Kube-scan, designed to help developers understand the level of security risk in their Kubernetes clusters.
They also open-sourced a second tool called The Kubernetes Common Configuration Scoring System, or KCCSS for short, which is the underlying configuration framework used in Kube-scan.
“There are 30 security settings in Kubernetes, and Kube-scan can help you see where you might be vulnerable on any one of them, measured on a scale of 0-10, with 10 being extremely vulnerable.”
Kube-Scan: https://github.com/octarinesec/kube-scan
KCSS: https://github.com/octarinesec/kccss
Press release: https://techcrunch.com/2020/01/22/octarine-releases-open-sou...
Does it say something about the (in)security of k8s, containers and 'cloud native' that so many companies are focused on providing virus scanning functionality for it compared to traditional linux which surely outnumbers by a very large margin those installations?
It's a very sad time that linux has now devolved so badly that people have to resort to installing a mcafee virus scanner.