Kubescape

Kubescape is an open-source Kubernetes security platform used for scanning clusters, YAML manifests, and container workloads for security risks, vulnerabilities, and compliance issues. It helps DevOps and security teams secure Kubernetes environments through automated security analysis and policy enforcement.

• Scans Kubernetes clusters and YAML manifests for security misconfigurations.
• Detects vulnerabilities, exposed secrets, and insecure Kubernetes settings.
• Provides compliance scanning for frameworks like NSA-CISA, MITRE ATT&CK, and CIS Kubernetes Benchmark.
• Analyzes RBAC permissions to identify excessive access privileges.
• Supports container image vulnerability scanning.
• Integrates with CI/CD pipelines and GitOps workflows for DevSecOps automation.
• Offers Kubernetes Security Posture Management (KSPM) capabilities.
• Supports local, cloud, and Kubernetes-based environments.