Kubescape

The first open-source tool for testing if Kubernetes is deployed according to
the NSA-CISA AND the MITRE ATT&CK®

Run Kubescape in one command

watch the guide

devsecops freameworks

  • Multiple frameworks available in one tool – NSA-CISA, MITRE, Devops best practices
  • Build and create customized compliance frameworks
  • Manage Exceptions, and avoid alert fatigue

kubernetes posture test & compliance

  • Scans K8s clusters, YAML files, and HELM charts
  • Detection of misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline
  • Identify configuration drifts in real-time

Risk visibility

  • Get Instant K8s risk score
  • See history of past scans and risk trends overtime

Usability

  • Integrates natively with DevOps tools, including Jenkins, CircleCI and Github workflows
  • Easy to use CLI interface and flexible output formats
  • Super-friendly UI to test K8s posture and compliance against policy/rules
  • No installation in cluster
  • One command deployment, get results in seconds

Join Our Growing Developers Community

The fastest-growing K8s open-source testing tool

Visit Github

Visit

Join the conversation on Discord

Join

Follow us

Follow

4.1k stars

180 forks

5K+ clusters scanned

20k downloads

WHAT our users ARE SAYING

Kubescape is open-source project, we welcome your feedback and ideas for improvement. We’re also aiming to collaborate with the Kubernetes community to help make the tests themselves more robust and complete as Kubernetes develops.