A curated list for Awesome and Free Kubernetes Security resources. Most of the resources are in English, the ones that aren't will be flagged as such.

All the contents of this list are public and mostly free, use them for educational purposes only. Most of the tools have NOT been tested or reviewed, use them at your own risk!

To understand about Kubernetes Security you first need to understand how Kubernetes works and all the components involved. Here's some links and materials to help you with that journey.

Kubernetes.io - https://kubernetes.io/

Kubernetes GitHub - https://github.com/kubernetes/kubernetes

Kubernetes: Getting Started - https://azure.microsoft.com/en-us/overview/kubernetes-getting-started/

Kubernetes: Up and Running, Second Edition by Brendan Burns, Joe Beda and Kelsey Hightower - https://azure.microsoft.com/en-us/resources/kubernetes-up-and-running/?cdn=disable

Kubernetes The Hard Way - Kelsey Hightower - https://github.com/kelseyhightower/kubernetes-the-hard-way

Kubernetes - Challenge - https://github.com/hector-vido/kubernetes-challenge (pt-BR)

Kubernetes de K a S - https://github.com/erlonpinheiro/kubernetes_de_k_a_s (pt-BR)

Kubernetes Training - https://github.com/ashishrpandey/kubernetes-training

Introduction to Kubernetes - https://www.edx.org/course/introduction-to-kubernetes

Kube Academy - https://kube.academy/

Game of Pods (KodeKloud) - https://kodekloud.com/p/game-of-pods

Uncomplicating Kubernetes (Jefferson Noronha aka LinuxTips) - https://www.youtube.com/watch?v=zz1p3gjyHgc (pt-BR)

Kubernetes in 5 mins - https://www.youtube.com/watch?v=PH-2FfFD2PU

Kubernetes Concepts Explained in 9 minutes! - https://www.youtube.com/watch?v=QJ4fODH6DXI

These are the main contents of this awesome list. Everything related to the security of Kubernetes, either breaking or improving it, will be added down below. If you have any other good recommendations, feel free to submit a PR.

Kubernetes Security and Disclosure Information - https://kubernetes.io/docs/reference/issues-security/security/

Cloud Native Security - https://kubernetes.io/docs/concepts/security/overview/

Pod Security Standards - https://kubernetes.io/docs/concepts/security/pod-security-standards/

Kubernetes Security - https://kubernetes-security.info/

Attack Matrix for Kubernetes - https://www.microsoft.com/security/blog/2020/04/02/attack-matrix-kubernetes/

Open Sourcing the Kubernetes Security Audit - https://www.cncf.io/blog/2019/08/06/open-sourcing-the-kubernetes-security-audit/

Guidance on Kubernetes Threat Modeling - https://www.trendmicro.com/vinfo/us/security/news/virtualization-and-cloud/guidance-on-kubernetes-threat-modeling

Securing the 4Cs of Cloud Native - https://www.trendmicro.com/vinfo/us/security/news/virtualization-and-cloud/securing-the-4-cs-of-cloud-native-systems-cloud-cluster-container-and-code

Container Security by Liz Rice - https://info.aquasec.com/container-security-book

Kubernetes Security by Liz Rice and Michael Hausenblas - https://info.aquasec.com/kubernetes-security

Kubernetes Security Assessment - https://raw.githubusercontent.com/kubernetes/community/master/wg-security-audit/findings/Kubernetes%20Final%20Report.pdf

Kubernetes Security Whitepaper - https://raw.githubusercontent.com/kubernetes/community/master/wg-security-audit/findings/Kubernetes%20White%20Paper.pdf

Kubernetes Threat Model - https://raw.githubusercontent.com/kubernetes/community/master/wg-security-audit/findings/Kubernetes%20Threat%20Model.pdf

Attacking Kubernetes - A Guide for Administrators and Penetration Testers - https://raw.githubusercontent.com/kubernetes/community/master/wg-security-audit/findings/AtredisPartners_Attacking_Kubernetes-v1.0.pdf

CIS Kubernetes Benchmark v1.5.0 - https://www.cisecurity.org/benchmark/kubernetes/

Kubernetes Audit by Trail of Bits - https://github.com/trailofbits/audit-kubernetes

Advanced Persistence Threats: The Future of Kubernetes Attacks (RSAC 2020) - https://www.youtube.com/watch?v=CH7S5rE3j8w

Kubernetes Security Best Practices - Ian Lewis, Google - https://www.youtube.com/watch?v=wqsUfvRyYpw

Securing Kubernetes Secrets (Cloud Next '19) - https://www.youtube.com/watch?v=DNKcRUyz4Hw

Jay Beale - Attacking and Defending Kubernetes - DEF CON 27 Packet Hacking Village - https://www.youtube.com/watch?v=2fmAuR3rnBo

falco - https://github.com/falcosecurity/falco

kubesec - https://github.com/controlplaneio/kubesec

kube-bench - https://github.com/aquasecurity/kube-bench

kube-hunter - https://github.com/aquasecurity/kube-hunter

trivy - https://github.com/aquasecurity/trivy

MKIT - https://github.com/darkbitio/mkit

Bust-a-Kube - https://www.bustakube.com/

kube-goat - https://github.com/ksoclabs/kube-goat

kubetap - https://github.com/soluble-ai/kubetap

Peirates - https://github.com/inguardians/peirates

kube-forensics - https://github.com/keikoproj/kube-forensics

k8s-security-dashboard - https://github.com/k8scop/k8s-security-dashboard

CIS Kubernetes Benchmark - InSpec Profile - https://github.com/dev-sec/cis-kubernetes-benchmark

Secure Kubernetes - https://securekubernetes.com/

Kubernetes Security (Advanced Concepts) - https://linuxacademy.com/course/kubernetes-security-advanced-concepts/

kubepwn - https://github.com/alexivkin/kubepwn

awesome-kubernetes-security - https://github.com/ksoclabs/awesome-kubernetes-security