You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
MKAT is a toolkit for identifying common security issues in managed Kubernetes environments. It is focused on AWS EKS at the moment, but will be extended to other managed Kubernetes environments in the future.
4
8
5
-
## Pre-requisites
9
+
## Installation
10
+
11
+
```bash
12
+
brew tap datadog/managed-kubernetes-auditing-toolkit https://github.com/datadog/managed-kubernetes-auditing-toolkit
... or use a [pre-compiled binary](https://github.com/DataDog/managed-kubernetes-auditing-toolkit/releases).
6
17
7
-
Make sure you are authenticated against your cluster, and to AWS. MKAT uses your current AWS and kubectl authentication contexts.
18
+
Then, make sure you are authenticated against your cluster, and to AWS. MKAT uses your current AWS and kubectl authentication contexts.
8
19
9
20
```bash
10
21
aws eks update-kubeconfig --name <cluster-name>
@@ -120,4 +131,4 @@ We currently plan to:
120
131
* Add a feature to identify EKS pods that are exposed through an AWS load balancer, through the [aws-load-balancer-controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller)
121
132
* Add support for GCP GKE
122
133
* Allow scanning for additional types of cloud credentials
123
-
* Enhance the IAM role trust policy evaluation logic to take into account additional edge cases
134
+
* Enhance the IAM role trust policy evaluation logic to take into account additional edge cases
0 commit comments