I hereby claim:
- I am ankurk99 on github.
- I am knownymous (https://keybase.io/knownymous) on keybase.
- I have a public key ASCKA55r4yvCc3asgcxm5gHlIaBuC_7YLiC_sA-v5JuC8Ao
To claim this, I am signing this object:
Ankurk99
/ kubearmor-install.sh
Last active
November 6, 2023 10:57
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # SPDX-License-Identifier: Apache-2.0 | |
| # Copyright 2023 Authors of KubeArmor | |
| namespace="kubearmor" | |
| echo "Waiting for all pods in namespace '$namespace' to be in the 'Running' state" | |
| kubectl wait --for=condition=ready --timeout=5m -n kubearmor pod -l kubearmor-app=kubearmor-operator | |
| kubectl get po -n $namespace |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Namespace | |
| metadata: | |
| name: accuknox-agents | |
| --- | |
| apiVersion: apiextensions.k8s.io/v1 | |
| kind: CustomResourceDefinition | |
| metadata: | |
| annotations: | |
| controller-gen.kubebuilder.io/version: v0.11.1 |
Ankurk99
/ crown-jewel policies
Created
June 9, 2023 15:46
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: security.kubearmor.com/v1 | |
| kind: KubeArmorPolicy | |
| metadata: | |
| name: autopol-sensitive-1836005104 | |
| namespace: default | |
| spec: | |
| action: Allow | |
| file: | |
| matchDirectories: | |
| - action: Block |
Ankurk99
/ least-permissive policy
Created
June 9, 2023 15:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: security.kubearmor.com/v1 | |
| kind: KubeArmorPolicy | |
| metadata: | |
| name: autopol-system-1836005104 | |
| namespace: default | |
| spec: | |
| action: Allow | |
| file: | |
| matchDirectories: | |
| - dir: / |
Ankurk99
/ gist:8cc2bd7b3aebfdfd856035b3c195e3bb
Created
March 27, 2023 19:03
karmor recommend for KubeArmor daemonset
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Deployment | kubearmor/kubearmor-relay | |
| Container | kubearmor/kubearmor-relay-server:latest | |
| OS | linux | |
| Arch | amd64 | |
| Distro | alpine | |
| Output Directory | out/kubearmor-kubearmor-relay | |
| policy-template version | v0.1.9 | |
| +------------------------------------+--------------------------------+----------+--------+---------------------------------------------------+ | |
| | POLICY | SHORT DESC | SEVERITY | ACTION | TAGS | | |
| +------------------------------------+--------------------------------+----------+--------+---------------------------------------------------+ |
Ankurk99
/ build_commit.yml
Created
April 12, 2021 16:58
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: build_commits | |
| on: [push, pull_request] | |
| jobs: | |
| build_commits: | |
| name: build commit code | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: checkout code |
Ankurk99
/ load_program.c
Created
August 5, 2020 21:13
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <assert.h> | |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <gbpf.h> | |
| #include <sys/ebpf_param.h> | |
| #include <sys/xdp.h> | |
| #include <sys/ebpf_probe.h> | |
| #include <gbpf_driver.h> | |
| struct my_data { |
Ankurk99
/ keybase.md
Created
September 19, 2019 15:06
Ankurk99
/ keybase.md
Created
September 19, 2019 15:06
I hereby claim:
- I am ankurk99 on github.
- I am knownymous (https://keybase.io/knownymous) on keybase.
- I have a public key ASCKA55r4yvCc3asgcxm5gHlIaBuC_7YLiC_sA-v5JuC8Ao
To claim this, I am signing this object:
Ankurk99
/ keybase.md
Created
September 19, 2019 15:06
I hereby claim:
- I am ankurk99 on github.
- I am knownymous (https://keybase.io/knownymous) on keybase.
- I have a public key ASCKA55r4yvCc3asgcxm5gHlIaBuC_7YLiC_sA-v5JuC8Ao
To claim this, I am signing this object:
NewerOlder