Kubescape

Kubescape is an open source security and compliance platform that scans clusters, Kubernetes manifest files (YAML files, and Helm charts), code repositories, container registries and images. It detects misconfigurations according to frameworks such as the NSA-CISA, MITRE ATT&CK® and CIS, as well as software vulnerabilities, and calculates risk scores.

Kubescape was accepted to CNCF on December 13, 2022 and is at the Sandbox project maturity level.

Recorded Kubescape programs

CNCF On-Demand Webinar: Securing the cloud with Canonical Kubernetes and Kubescape

CNCF On-Demand Webinar: Securing the cloud with Canonical Kubernetes and Kubescape

Presented by: ARMO, Canonical
January 26, 2023 645 views

Latest tweets from Kubescape

The next video in my @Kubescape course is now out!

Improve your security posture by hooking Kubescape up to your @PrometheusIO instances, giving you the ability to track your improvements over time; even with @grafana dashboard to boot.

https://t.co/LggiWLNnLK

Kubescape maintainer @slashben81 is presenting the results of our container registry research, and how you to prioritize which vulnerabilities to fix, at @CloudNativeFdn's #CloudNativeSecurityCon.

We'll share the video as soon as it's up!