Forwarded from Записки админа
🆖 Nginxpwner.
Утилита для проверки безопасности Nginx, ищет очевидные (и не очень) проблемы и сообщает о них:
https://github.com/stark0de/nginxpwner
#nginx #security #будничное
Утилита для проверки безопасности Nginx, ищет очевидные (и не очень) проблемы и сообщает о них:
https://github.com/stark0de/nginxpwner
#nginx #security #будничное
Forwarded from Записки админа
🛠 Инструмент для визуализация связей и структуры в базе данных, поддерживающий более 20 разных БД. Доступен как онлайн, так и для установки на собственном сервере:
- Онлайн: https://sqlflow.gudusoft.com/
- Селфхост: https://github.com/sqlparser/sqlflow_public/blob/master/install_sqlflow.md
#линк #sql
- Онлайн: https://sqlflow.gudusoft.com/
- Селфхост: https://github.com/sqlparser/sqlflow_public/blob/master/install_sqlflow.md
#линк #sql
A list of security tools for AWS. It has both defensive and offensive as well as auditing tools.
This list is really huge, so I’m pretty sure that if you’re working on hardening your AWS setup, you’ll find something interesting for you there.
This list is really huge, so I’m pretty sure that if you’re working on hardening your AWS setup, you’ll find something interesting for you there.
GitHub
GitHub - toniblyx/my-arsenal-of-aws-security-tools: List of open source tools for AWS security: defensive, offensive, auditing…
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. - toniblyx/my-arsenal-of-aws-security-tools
Kubetail is a bash noscript that enables you to aggregate (tail/follow) logs from multiple pods into one stream.
This is the same as running kubectl logs -f but for multiple pods.
More: https://github.com/johanhaleby/kubetail
This is the same as running kubectl logs -f but for multiple pods.
More: https://github.com/johanhaleby/kubetail
GitHub
GitHub - johanhaleby/kubetail: Bash noscript to tail Kubernetes logs from multiple pods at the same time
Bash noscript to tail Kubernetes logs from multiple pods at the same time - johanhaleby/kubetail
Forwarded from Kubesploit
In this article, you will learn how to attack and defend a Kubernetes cluster by solving the challenges of Kubernetes goat — an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
More: https://medium.com/@codingkarma/kubernetes-goat-part-1-8718b1345a42
More: https://medium.com/@codingkarma/kubernetes-goat-part-1-8718b1345a42
Forwarded from Kubesploit
Kubernetes security scanners are tools that can be used to detect vulnerabilities and security issues in your applications. In this article you will find:
1. Grype.
2. Trivy.
3. Kubesec.
4. Kube-bench.
5. Kubeaudit.
More: https://blog.cloudsecque.com/how-to-improve-the-security-of-your-applications-with-kubernetes-security-scanners-cda97fd2f574
1. Grype.
2. Trivy.
3. Kubesec.
4. Kube-bench.
5. Kubeaudit.
More: https://blog.cloudsecque.com/how-to-improve-the-security-of-your-applications-with-kubernetes-security-scanners-cda97fd2f574
k8s-pod-restart-info-collector
Automated troubleshooting of Kubernetes Pods issues. Collect K8s pod restart reasons, logs, and events automatically.
https://github.com/airwallex/k8s-pod-restart-info-collectorGitHub
GitHub - airwallex/k8s-pod-restart-info-collector: Automated troubleshooting of Kubernetes Pods issues. Collect K8s pod restart…
Automated troubleshooting of Kubernetes Pods issues. Collect K8s pod restart reasons, logs, and events automatically. - airwallex/k8s-pod-restart-info-collector
Интересный терминал для Windows\MacOS\Linux
https://www.youtube.com/watch?v=NfggT5enF4o&ab_channel=ChristianLempa
https://www.youtube.com/watch?v=NfggT5enF4o&ab_channel=ChristianLempa
YouTube
New *incredible* mac OS terminal! (warp + starship + zsh)
Today I want to show you my new terminal on MacOS. I'm using Warp Terminal, a new modern terminal for the 21st century. We will take a look at AI Command Searching, Workflows and other cool stuff. And finally some new customizations to my dot files and plugins…
Logging With Docker, Promtail and Grafana Loki
В этом посте описано использование Grafana Promtail для сбора всех журналов и отправки их в Grafana Loki. Читать дальше.
В этом посте описано использование Grafana Promtail для сбора всех журналов и отправки их в Grafana Loki. Читать дальше.
The Open Source Kubernetes Security Platform - from development to production, configuration to runtime
https://www.armosec.io/
https://www.armosec.io/
ARMO
ARMO: Runtime Behavioral Cloud Application Detection & Response (CADR)
Zero-day and every day protection for your cloud applications with a complete explainable & traceable runtime security story.
Forwarded from LearnKube news
Kubernetes uses kernel throttling to implement CPU limits.
If an application goes above the limit, it gets throttled.
In this article, you will learn how to mitigate aggressive throttling for CPU limits in Kubernetes.
More: https://medium.com/omio-engineering/cpu-limits-and-aggressive-throttling-in-kubernetes-c5b20bd8a718
If an application goes above the limit, it gets throttled.
In this article, you will learn how to mitigate aggressive throttling for CPU limits in Kubernetes.
More: https://medium.com/omio-engineering/cpu-limits-and-aggressive-throttling-in-kubernetes-c5b20bd8a718
Forwarded from DevOps&SRE Library
Managing Terraform State with Terragrunt
Why do devs choose Terragrunt to manage Terraform state? A look at the challenges of managing Terraform and the use cases for Terragrunt.https://www.tinystacks.com/blog-post/managing-terraform-state-with-terragrunt
Forwarded from Полуконсольная мышь
cdebug - a swiss army knife of container debugging
With this tool you can:
- Troubleshoot containers lacking shell and/or debugging tools
- Forward unpublished or even localhost ports to your host system
- Expose endpoints from the host system to containers & Kubernetes networks
- Handily export image's and/or container's filesystem to local folders
👉 https://github.com/iximiuz/cdebug
#containers #debug
With this tool you can:
- Troubleshoot containers lacking shell and/or debugging tools
- Forward unpublished or even localhost ports to your host system
- Expose endpoints from the host system to containers & Kubernetes networks
- Handily export image's and/or container's filesystem to local folders
👉 https://github.com/iximiuz/cdebug
#containers #debug
Средство для визуализации данных из разных источников и построения дашбордов
Поддерживает SQL, NoSQL, ElasticSearch и многие другие
https://superset.apache.org/
Поддерживает SQL, NoSQL, ElasticSearch и многие другие
https://superset.apache.org/
superset.apache.org
Welcome | Superset
Community website for Apache Superset™, a data visualization and data exploration platform
Control your AWS accounts by one place
https://aws.amazon.com/ru/controltower/
https://aws.amazon.com/ru/controltower/
Amazon
Cloud Security Governance - AWS Control Tower - AWS
AWS Control Tower provides a single location to set up a well-architected, multi-account environment to govern your AWS workloads with rules for security, operations, and compliance.
Forwarded from hahacker_news
Infrastructure as Code, Patterns and...pdf
12.8 MB
Infrastructure as Code, Patterns and Practices: With examples in Python and Terraform (2022)
Автор: Rosemary Wang
Автор: Rosemary Wang