This repo is a collection of kubernetes security stuff and research.
-
In-depth research about security of kubernetes features and misconfigurations. Source for all documents below
-
Security hardening and best practices
A "must do"/best practices list of things to make attacker's life hard
-
A checklist of flags to quickly test if your cluster has security features enabled.
-
A guide for attacker: what to do if he gets to pod/cluster.
Also, some attacks included
-
Page with sources for security announces and previous vulnerabilities
-
Script for enumerating services in kubernetes cluster. Common services dictionary provided.