Uploaded byLibbySchulze
PDF, PPTX174 views

Is your kubernetes negative or positive

This document summarizes an on-demand webinar about Kubescape, an open-source tool for testing Kubernetes security and compliance. It discusses how Kubescape allows scanning a Kubernetes cluster or configuration files against multiple frameworks with a single click. The webinar demonstrates running an initial scan in under 3 minutes, analyzing results, and integrating Kubescape into CI/CD pipelines and clusters. It also introduces the ARMO platform for securing the full Kubernetes development lifecycle.

Embed presentation

Download as PDF, PPTX
On-Demand Webinar: Is Your Kubernetes Positive or Negative? Kubescape is the first open- source tool for testing if Kubernetes is deployed securely and in compliance against multiple frameworks in one single click. Star Us: https://github.com/armosec/kubescape Join our Discord: https://discord.gg/aEdBsgWQtc Visit Us: https://www.armosec.io/armo-kubescape
# Shauli Rozen # CEO & Co-Founder, ARMO # SW Developer turned entrepreneur My life is like: >> 5 am – Go Surfing >> 8 am - Build Kubernetes Security products >> 9 pm – Put three boys to sleep >> Repeat Who am I?
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Houston, We Have a {Configuration} Problem Through 2025, more than 99% of cloud breaches will have a root cause of customer misconfigurations or mistakes
Millions of Potential Configuration Issues, Where do I Start? Best Practices Frameworks to the rescue
The First Open-Source Tool to Scan Kubernetes According to Multiple Frameworks Multiple Frameworks Code & Clusters NSA, MITRE, K8s Best Practices, or create your own custom one Scan running cluster or YAMLs and HELM in your IAC Run within your CI/CD Simple integration to your favorite pipeline tools
Armo’s Kubescape Is Becoming The Most Popular K8s Security Open-Source tool on Github Fastest growing Kubernetes Security GitHub Project Top GitHub trending list Developers and DevOps from over 40 Fortune 500 companies 4K 3K 2K 1K 0K 2017 2018 2019 2021 2020 Github stars armosec/kubesape aqyasecurity/kube-bench alcideio/skan Stackrox/kube-linter snyk/snyk pixie-labs/pixie bridgercewio/checkov falcosecurity/falco
Join Thousands of Kubescape Users
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Let's See It In Action, 3 Min or less to get your first scan going, no in-cluster installation, read only privileges Less than 3 Min to get your first scan API Based with read- only Privileges Get Started: https://github.com/armosec/kubescape
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Analyzing the results, Finding remediations, setting up exceptions, and using custom frameworks Kubescape Documentation: https://hub.armo.cloud/ Understand risk over time, and identify drifts Set exceptions and find remediations Build your own framework Coming next: Analyze RBAC and excessive privileges Scan container images and put vulnerabilities into context
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Check Early in CI/CD and Continuously in Production Run as CLI within DevTools, CI Pipelines Run in Cluster as CronJob for Continuous Monitoring
Agenda >> Why do I care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
Go Past Configurations with ARMO’s Dev To Production Kubernetes Platform Through 2025, more than 99% of cloud breaches will have a root cause of customer misconfigurations or mistakes
Go Past Configurations with ARMO’s Dev To Production Kubernetes Platform #01 #02 #03 Configuration Deployment Production Open Source . Free Forever Tiered Offering. Free Tier Tiered Offering. Free Tier
ARMO’s Dev To Production Kubernetes Platform Configuration Deployment Production #01 #02 #03 Open Source . Free Forever Tiered Offering. Free Tier Tiered Offering. Free Tier On demand checks CI/CD embedding Yamls & cluster (from outside) Frameworks In cluster install Always on watching Vulnerability scanning Admission control Audit log analysis Live alerts Least privilege monitoring Native policy enforcement Runtime Zero-Trust Deep observability Vulnerability relevancy Memory protection Secret protection Zero Trust network protection Identity based data protection Service Mesh interoperability Live feedback Live feedback Check early in the CI/CD Continues Posture control
The ARMO True Zero-Trust Model With one YAML, on any cluster Protect customer solutions even if infrastructure is compromised Memory Protection & Exploit Prevention Automated Zero- Trust Network Policy ONLY PROTECTED AND AUTHORIZED MICROSERVICES CAN: Run Communicate Access Data Transparent Data Encryption Memory Protection & Exploit Prevention ONLY PROTECTED AND AUTHORIZED MICROSERVICES CAN: Run Communicate Access Data
/> Thank You

More Related Content

PDF
Kubestr browse2021.pptx
byLibbySchulze
 
PDF
DCSF19 Kubernetes Security with OPA
byDocker, Inc.
 
PDF
E bpf and profilers
byLibbySchulze
 
PDF
Whats new in brigade 2
byLibbySchulze
 
PDF
GitOps is the best modern practice for CD with Kubernetes
byVolodymyr Shynkar
 
PDF
Making your app soar without a container manifest
byLibbySchulze
 
PDF
Real World CI/CD with Kubernetes
byOpsta
 
PPTX
Tectonic Summit 2016: Multi-Cluster Kubernetes: Planning for Unknowns
byCoreOS
 
Kubestr browse2021.pptx
byLibbySchulze
 
DCSF19 Kubernetes Security with OPA
byDocker, Inc.
 
E bpf and profilers
byLibbySchulze
 
Whats new in brigade 2
byLibbySchulze
 
GitOps is the best modern practice for CD with Kubernetes
byVolodymyr Shynkar
 
Making your app soar without a container manifest
byLibbySchulze
 
Real World CI/CD with Kubernetes
byOpsta
 
Tectonic Summit 2016: Multi-Cluster Kubernetes: Planning for Unknowns
byCoreOS
 

What's hot

PDF
Kubescape single pane of glass
byLibbySchulze1
 
PDF
Building a Secure Supply Chain with Docker
byDocker, Inc.
 
PDF
Flux is incubating + the road ahead
byLibbySchulze
 
PDF
Breaking tradition the future of package management with kubernetes
byLibbySchulze
 
PDF
Kubernetes: one cluster or many
bycornelia davis
 
PDF
The Complexity to "Yes" in Analytics Software and the Possibilities with Dock...
byDocker, Inc.
 
PDF
Scaling DevSecOps Culture for Enterprise
byOpsta
 
PDF
Hardening Your CI/CD Pipelines with GitOps and Continuous Security
byWeaveworks
 
PPTX
Tectonic Summit 2016: Multitenant Data Architectures with Kubernetes
byCoreOS
 
PDF
Mc git ops_incorpbackups_kanister
byLibbySchulze
 
PDF
Zero-downtime deployment of Micro-services with Kubernetes
byWojciech Barczyński
 
PPTX
CDK - The next big thing - Quang Phuong
byVietnam Open Infrastructure User Group
 
PDF
Crossing the Streams! Rollout Strategies to Keep Your Users Happy!
byVMware Tanzu
 
PDF
Continuous Delivery on Kubernetes Using Spinnaker
byWSO2
 
PDF
How we can do Multi-Tenancy on Kubernetes
byOpsta
 
PDF
Introduction to Kubernetes and GKE
byOpsta
 
PDF
Openshift argo cd_v1_2
byRastinKenarsari
 
PDF
Kubecon seattle 2018 workshop slides
byWeaveworks
 
PDF
Kubernetes 1.21 release
byLibbySchulze
 
PDF
Spring Boot Observability
byVMware Tanzu
 
Kubescape single pane of glass
byLibbySchulze1
 
Building a Secure Supply Chain with Docker
byDocker, Inc.
 
Flux is incubating + the road ahead
byLibbySchulze
 
Breaking tradition the future of package management with kubernetes
byLibbySchulze
 
Kubernetes: one cluster or many
bycornelia davis
 
The Complexity to "Yes" in Analytics Software and the Possibilities with Dock...
byDocker, Inc.
 
Scaling DevSecOps Culture for Enterprise
byOpsta
 
Hardening Your CI/CD Pipelines with GitOps and Continuous Security
byWeaveworks
 
Tectonic Summit 2016: Multitenant Data Architectures with Kubernetes
byCoreOS
 
Mc git ops_incorpbackups_kanister
byLibbySchulze
 
Zero-downtime deployment of Micro-services with Kubernetes
byWojciech Barczyński
 
CDK - The next big thing - Quang Phuong
byVietnam Open Infrastructure User Group
 
Crossing the Streams! Rollout Strategies to Keep Your Users Happy!
byVMware Tanzu
 
Continuous Delivery on Kubernetes Using Spinnaker
byWSO2
 
How we can do Multi-Tenancy on Kubernetes
byOpsta
 
Introduction to Kubernetes and GKE
byOpsta
 
Openshift argo cd_v1_2
byRastinKenarsari
 
Kubecon seattle 2018 workshop slides
byWeaveworks
 
Kubernetes 1.21 release
byLibbySchulze
 
Spring Boot Observability
byVMware Tanzu
 

Similar to Is your kubernetes negative or positive

PPTX
Rancher MasterClass - Avoiding-configuration-drift.pptx
byLibbySchulze
 
PDF
Join Our Party: The Cloud Native Adventure Brigade (Kubernetes Belgium 2019)
bybridgetkromhout
 
PDF
Day 2 Kubernetes - Tools for Operability (KubeCon)
bybridgetkromhout
 
PPTX
Security hardening enhancements for Kubernetes
byRuncy Oommen
 
PPTX
Kubernetes Manchester - 6th December 2018
byDavid Stockton
 
PDF
DevOps Fest 2020. Дмитрий Кудрявцев. Реализация GitOps на Kubernetes. ArgoCD
byDevOps_Fest
 
PDF
Shift Right Security for EKS Webinar Slides
byAnchore
 
PPTX
DevOps with Kubernetes and Helm - OSCON 2018
byJessica Deen
 
PDF
Keeping your Kubernetes Cluster Secure
byGene Gotimer
 
PDF
Lines of Defense - Securing your Kubernetes Clusters by Koray Oksay
byContainerDay Security 2023
 
PDF
Kubernetes - introduction
bySparkbit
 
PPTX
Introduction to KubeSphere and its open source ecosystem
byKubeSphere
 
PDF
Securing k8s With Kubernetes Goat
byMuhammad Yuga Nugraha
 
PDF
Behind the Code 'September 2022 // by Exness
byMaxim Gaponov
 
PDF
Slide DevSecOps Microservices
byHendri Karisma
 
PDF
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
PPTX
Microsoft, Linux, Open Source, DevOps
byJessica Deen
 
PDF
Kubernetes Operability Tooling (Minnebar 2019)
bybridgetkromhout
 
PPTX
DevOps with Kubernetes and Helm
byJessica Deen
 
PDF
Data protection in a kubernetes-native world
byLibbySchulze
 
Rancher MasterClass - Avoiding-configuration-drift.pptx
byLibbySchulze
 
Join Our Party: The Cloud Native Adventure Brigade (Kubernetes Belgium 2019)
bybridgetkromhout
 
Day 2 Kubernetes - Tools for Operability (KubeCon)
bybridgetkromhout
 
Security hardening enhancements for Kubernetes
byRuncy Oommen
 
Kubernetes Manchester - 6th December 2018
byDavid Stockton
 
DevOps Fest 2020. Дмитрий Кудрявцев. Реализация GitOps на Kubernetes. ArgoCD
byDevOps_Fest
 
Shift Right Security for EKS Webinar Slides
byAnchore
 
DevOps with Kubernetes and Helm - OSCON 2018
byJessica Deen
 
Keeping your Kubernetes Cluster Secure
byGene Gotimer
 
Lines of Defense - Securing your Kubernetes Clusters by Koray Oksay
byContainerDay Security 2023
 
Kubernetes - introduction
bySparkbit
 
Introduction to KubeSphere and its open source ecosystem
byKubeSphere
 
Securing k8s With Kubernetes Goat
byMuhammad Yuga Nugraha
 
Behind the Code 'September 2022 // by Exness
byMaxim Gaponov
 
Slide DevSecOps Microservices
byHendri Karisma
 
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
Microsoft, Linux, Open Source, DevOps
byJessica Deen
 
Kubernetes Operability Tooling (Minnebar 2019)
bybridgetkromhout
 
DevOps with Kubernetes and Helm
byJessica Deen
 
Data protection in a kubernetes-native world
byLibbySchulze
 

More from LibbySchulze

PDF
Running distributed tests with k6.pdf
byLibbySchulze
 
PPTX
Extending Kubectl.pptx
byLibbySchulze
 
PPTX
Enhancing Data Protection Workflows with Kanister And Argo Workflows
byLibbySchulze
 
PDF
Fallacies in Platform Engineering.pdf
byLibbySchulze
 
PDF
Intro to Fluvio.pptx.pdf
byLibbySchulze
 
PPTX
Enhance your Kafka Infrastructure with Fluvio.pptx
byLibbySchulze
 
PDF
CNCF On-Demand Webinar_ LitmusChaos Project Updates.pdf
byLibbySchulze
 
PDF
Oh The Places You'll Sign.pdf
byLibbySchulze
 
PPTX
vFunction Konveyor Meetup - Why App Modernization Projects Fail - Aug 2022.pptx
byLibbySchulze
 
PPTX
CNCF Live Webinar: Low Footprint Java Containers with GraalVM
byLibbySchulze
 
PDF
EnRoute-OPA-Integration.pdf
byLibbySchulze
 
PDF
AirGap_zusammen_neu.pdf
byLibbySchulze
 
PDF
Copy of OTel Me All About OpenTelemetry The Current & Future State, Navigatin...
byLibbySchulze
 
PDF
OTel Me All About OpenTelemetry The Current & Future State, Navigating the Pr...
byLibbySchulze
 
PDF
CNCF_ A step to step guide to platforming your delivery setup.pdf
byLibbySchulze
 
PDF
CNCF Online - Data Protection Guardrails using Open Policy Agent (OPA).pdf
byLibbySchulze
 
PDF
Securing Windows workloads.pdf
byLibbySchulze
 
PDF
Securing Windows workloads.pdf
byLibbySchulze
 
PDF
Advancements in Kubernetes Workload Identity for Azure
byLibbySchulze
 
PDF
Containerized IDEs.pdf
byLibbySchulze
 
Running distributed tests with k6.pdf
byLibbySchulze
 
Extending Kubectl.pptx
byLibbySchulze
 
Enhancing Data Protection Workflows with Kanister And Argo Workflows
byLibbySchulze
 
Fallacies in Platform Engineering.pdf
byLibbySchulze
 
Intro to Fluvio.pptx.pdf
byLibbySchulze
 
Enhance your Kafka Infrastructure with Fluvio.pptx
byLibbySchulze
 
CNCF On-Demand Webinar_ LitmusChaos Project Updates.pdf
byLibbySchulze
 
Oh The Places You'll Sign.pdf
byLibbySchulze
 
vFunction Konveyor Meetup - Why App Modernization Projects Fail - Aug 2022.pptx
byLibbySchulze
 
CNCF Live Webinar: Low Footprint Java Containers with GraalVM
byLibbySchulze
 
EnRoute-OPA-Integration.pdf
byLibbySchulze
 
AirGap_zusammen_neu.pdf
byLibbySchulze
 
Copy of OTel Me All About OpenTelemetry The Current & Future State, Navigatin...
byLibbySchulze
 
OTel Me All About OpenTelemetry The Current & Future State, Navigating the Pr...
byLibbySchulze
 
CNCF_ A step to step guide to platforming your delivery setup.pdf
byLibbySchulze
 
CNCF Online - Data Protection Guardrails using Open Policy Agent (OPA).pdf
byLibbySchulze
 
Securing Windows workloads.pdf
byLibbySchulze
 
Securing Windows workloads.pdf
byLibbySchulze
 
Advancements in Kubernetes Workload Identity for Azure
byLibbySchulze
 
Containerized IDEs.pdf
byLibbySchulze
 

Recently uploaded

PPTX
A QUIZ ABOUT THE HISTORY OF MICROSOFT WORD
byzoenadiajara1
 
PDF
Beacon Kit paper foundation tech framework pdf
bySteven McGee
 
PPTX
Competitive Positioning - All HCI Competitors vs HPE PCBE dHCI _ SimpliVity w...
byyosefemiru123
 
PDF
galakticki fudbal galactic football.pdf...
byStefanFilipovic9
 
PPTX
Human Aspects of Information Security: The People Factor.pptx
byOmar Fernandez
 
PDF
Front-End vs Back-End Development: Roles, Tools, Skills & Career Guide
byIndian Website Company
 
PPTX
How Big Brands are Taking Your Traffic in Alberta [Data Inside].pptx
byVisibility Drip
 
PPTX
chatgpt overview presentation for school.pptx
byMojahidUlIslam19
 
PDF
Networking 2 Syllabus using cisco packet tracer simulator
byODINARARCH
 
PPTX
Introduction to Multi-dimentional array.pptx
byOmar Fernandez
 
PPTX
Analysis Intelligence in Cyber Protection.pptx
byOmar Fernandez
 
PPTX
Cybersecurity cyber incident Weeks_7_to_9.pptx
byriaz59
 
A QUIZ ABOUT THE HISTORY OF MICROSOFT WORD
byzoenadiajara1
 
Beacon Kit paper foundation tech framework pdf
bySteven McGee
 
Competitive Positioning - All HCI Competitors vs HPE PCBE dHCI _ SimpliVity w...
byyosefemiru123
 
galakticki fudbal galactic football.pdf...
byStefanFilipovic9
 
Human Aspects of Information Security: The People Factor.pptx
byOmar Fernandez
 
Front-End vs Back-End Development: Roles, Tools, Skills & Career Guide
byIndian Website Company
 
How Big Brands are Taking Your Traffic in Alberta [Data Inside].pptx
byVisibility Drip
 
chatgpt overview presentation for school.pptx
byMojahidUlIslam19
 
Networking 2 Syllabus using cisco packet tracer simulator
byODINARARCH
 
Introduction to Multi-dimentional array.pptx
byOmar Fernandez
 
Analysis Intelligence in Cyber Protection.pptx
byOmar Fernandez
 
Cybersecurity cyber incident Weeks_7_to_9.pptx
byriaz59
 

Is your kubernetes negative or positive

  • 1.
    On-Demand Webinar: Is YourKubernetes Positive or Negative? Kubescape is the first open- source tool for testing if Kubernetes is deployed securely and in compliance against multiple frameworks in one single click. Star Us: https://github.com/armosec/kubescape Join our Discord: https://discord.gg/aEdBsgWQtc Visit Us: https://www.armosec.io/armo-kubescape
  • 2.
    # Shauli Rozen #CEO & Co-Founder, ARMO # SW Developer turned entrepreneur My life is like: >> 5 am – Go Surfing >> 8 am - Build Kubernetes Security products >> 9 pm – Put three boys to sleep >> Repeat Who am I?
  • 3.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 4.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 5.
    Houston, We Havea {Configuration} Problem Through 2025, more than 99% of cloud breaches will have a root cause of customer misconfigurations or mistakes
  • 6.
    Millions of PotentialConfiguration Issues, Where do I Start? Best Practices Frameworks to the rescue
  • 7.
    The First Open-SourceTool to Scan Kubernetes According to Multiple Frameworks Multiple Frameworks Code & Clusters NSA, MITRE, K8s Best Practices, or create your own custom one Scan running cluster or YAMLs and HELM in your IAC Run within your CI/CD Simple integration to your favorite pipeline tools
  • 8.
    Armo’s Kubescape IsBecoming The Most Popular K8s Security Open-Source tool on Github Fastest growing Kubernetes Security GitHub Project Top GitHub trending list Developers and DevOps from over 40 Fortune 500 companies 4K 3K 2K 1K 0K 2017 2018 2019 2021 2020 Github stars armosec/kubesape aqyasecurity/kube-bench alcideio/skan Stackrox/kube-linter snyk/snyk pixie-labs/pixie bridgercewio/checkov falcosecurity/falco
  • 9.
  • 10.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 11.
    Let's See ItIn Action, 3 Min or less to get your first scan going, no in-cluster installation, read only privileges Less than 3 Min to get your first scan API Based with read- only Privileges Get Started: https://github.com/armosec/kubescape
  • 12.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 13.
    Analyzing the results,Finding remediations, setting up exceptions, and using custom frameworks Kubescape Documentation: https://hub.armo.cloud/ Understand risk over time, and identify drifts Set exceptions and find remediations Build your own framework Coming next: Analyze RBAC and excessive privileges Scan container images and put vulnerabilities into context
  • 14.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 15.
    Check Early inCI/CD and Continuously in Production Run as CLI within DevTools, CI Pipelines Run in Cluster as CronJob for Continuous Monitoring
  • 16.
    Agenda >> Why doI care? and how can you help me? >> Running your first scan in less than 3 minutes >> Analyzing results and setting your own framework >> Adding Kubescape to your CI/CD and Clusters >> Done! Now what?
  • 17.
    Go Past Configurationswith ARMO’s Dev To Production Kubernetes Platform Through 2025, more than 99% of cloud breaches will have a root cause of customer misconfigurations or mistakes
  • 18.
    Go Past Configurationswith ARMO’s Dev To Production Kubernetes Platform #01 #02 #03 Configuration Deployment Production Open Source . Free Forever Tiered Offering. Free Tier Tiered Offering. Free Tier
  • 19.
    ARMO’s Dev ToProduction Kubernetes Platform Configuration Deployment Production #01 #02 #03 Open Source . Free Forever Tiered Offering. Free Tier Tiered Offering. Free Tier On demand checks CI/CD embedding Yamls & cluster (from outside) Frameworks In cluster install Always on watching Vulnerability scanning Admission control Audit log analysis Live alerts Least privilege monitoring Native policy enforcement Runtime Zero-Trust Deep observability Vulnerability relevancy Memory protection Secret protection Zero Trust network protection Identity based data protection Service Mesh interoperability Live feedback Live feedback Check early in the CI/CD Continues Posture control
  • 20.
    The ARMO TrueZero-Trust Model With one YAML, on any cluster Protect customer solutions even if infrastructure is compromised Memory Protection & Exploit Prevention Automated Zero- Trust Network Policy ONLY PROTECTED AND AUTHORIZED MICROSERVICES CAN: Run Communicate Access Data Transparent Data Encryption Memory Protection & Exploit Prevention ONLY PROTECTED AND AUTHORIZED MICROSERVICES CAN: Run Communicate Access Data
  • 21.