prowler kubernetes
all
Assess Kubernetes cluster security best practices and configurations. See also: `prowler`, `prowler-aws`, `prowler-azure`, `prowler-gcp`, `prowler-m365`, `prowler-github`.
More info →Options (3)
-s, --servicesbooleanRun checks for selected Kubernetes services
Example:
prowler kubernetes {{[-s|--services]}} {{ietcd|apiserver|...}}-c, --checksbooleanRun a specific Kubernetes check
Example:
prowler kubernetes {{[-c|--checks]}} {{etcd_encryption}}-e, --excluded-checksbooleanExclude specific checks or services
Example:
prowler kubernetes {{[-e|--excluded-checks]}} {{etcd_encryption}} --exclude-services {{ietcd|apiserver|...}}Examples (7)
Run the default checks using the default kubeconfig location
Specify a custom kubeconfig file for scanning
prowler kubernetes --kubeconfig-file path/to/kubeconfigSpecify a specific Kubernetes context to scan
prowler kubernetes --context my-contextScan specific namespaces only
prowler kubernetes --namespaces default kube-systemRun checks for selected Kubernetes services
prowler kubernetes [-s|--services] ietcd|apiserver|...Run a specific Kubernetes check
prowler kubernetes [-c|--checks] etcd_encryptionExclude specific checks or services
prowler kubernetes [-e|--excluded-checks] etcd_encryption --exclude-services ietcd|apiserver|...made by @shridhargupta | data from tldr-pages