nimbus
nimbus copied to clipboard
5GSEC
Intent driven security automation framework
DS0032: Monitor for newly constructed containers that may deploy a container into an environment to facilitate execution or evade defenses. Below is the list of possible Kyverno policies that can...
Protecting system folder; /tmp; this should take care of most of the attacks as the attack binaries are loaded into these folders Do not allow binary execution from a list...
We need to have a feature to match / exclude namespaces for a policy. Design document - https://docs.google.com/document/d/1-zxAMBpX-ZdpmDTjS0qzmFk5pueOCtLaGa970KJLTNc/edit?usp=sharing
Seungsoo has already done some work with Caldera. Please check with him
### Description This issue aims to document the schemas and supported intent IDs for custom resources (CRs) used to manage security policies in Nimbus. We need documentation for: **Cluster scoped...
