- CIS Kubernetes Benchmarks: https://www.cisecurity.org/benchmark/kubernetes/
- kube-bench repository: https://github.com/aquasecurity/kube-bench
- How to customize the default configuration: https://github.com/aquasecurity/kube-bench/blob/master/docs/README.md#configuration-and-variables
- Automating compliance checking for Kubernetes-based applications: https://github.com/cds-snc/security-goals
- Hardening Kubernetes from Scratch: https://github.com/hardening-kubernetes/from-scratch
- CNCF Blog on 9 Kubernetes Security Best Practices Everyone Must Follow: https://www.cncf.io/blog/2019/01/14/9-kubernetes-security-best-practices-everyone-must-follow/
- Hardening Guide for Rancher https://rancher.com/docs/rancher/v2.x/en/security/hardening-2.2/
- Must-have Kubernetes security audit tools:
- Kube-bench: https://github.com/aquasecurity/kube-bench
- Kube-hunter: https://kube-hunter.aquasec.com/
- Kubeaudit: https://github.com/Shopify/kubeaudit
- Kubesec:https://github.com/controlplaneio/kubesec
- Open Policy Agent:https://www.openpolicyagent.org/
- K8Guard: https://k8guard.github.io/