KubiScan β cluster scanning tool Kubernetes for risky permissions in the Kubernetes Role-based access control (RBAC) authorization model. This tool was published as part of the Securing Kubernetes Clusters by Eliminating Risky Permissions study.
Kubernetes is an open source software for automating the deployment, scaling and management of containerized applications. Supports major containerization technologies, including Docker, rkt, hardware virtualization technologies are also supported.
KubiScan helps cluster administrators determine permissions that attackers can potentially use to compromise them. This can be especially useful in large environments where there are many permissions that can be difficult to keep track of manually. KubiScan collects information about risky rules and users, automating traditional manual checks and providing administrators with the information they need to mitigate risk.
Distributed under the GNU General Public License v3.0.
>>> Video with an example of work
Source: linux.org.ru