Tools

SCCCE provides a set of tools to help cloud security auditing.

Kubernetes Compliance and Security

The Kubernetes Compliance and Security aims to have a single endpoint for running all the compliance tools. The tools are:

• kube-score
• kube-linter
• kube-bench
• kube-hunter
• prowler

Available APIs

tip

See K8s Compliance API Reference for more details.

1. Run all benchmarks (GET /api/v1/k8s-compliance/run/k8s/benchmark)
2. Post the offline report and all extract report functions (POST /api/v1/k8s-compliance/run/k8s/offlinereport/upload)
3. List all offline reports (GET /api/v1/k8s-compliance/run/k8s/offlinereport)

ELK Stack

ELK is used for kubernetes real time monitoring and cloud log aggregation. Please refer to ELK Stack for more details.

Greenbone

Greenbone is used for vulnerability scanning. Please refer to Greenbone for more details.