Linux command
prowler-kubernetes 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Run Kubernetes security assessment
prowler kubernetes
Run with specific context
prowler kubernetes --context [my-cluster]
Run specific checks
prowler kubernetes --checks [pod_security_policy]
Output to JSON
prowler kubernetes -M json -o [results/]
说明
prowler kubernetes performs security assessment of Kubernetes clusters. It checks for misconfigurations, RBAC issues, pod security violations, and compliance against security best practices including the CIS Kubernetes Benchmark. The tool connects to the cluster using the current kubeconfig context and evaluates resources across namespaces. Results can be filtered by specific checks, namespaces, or compliance frameworks.
参数
- --checks _checks_
- Specific checks to run.
- --context _name_
- Kubernetes context.
- --namespace _name_
- Target namespace.
- --compliance _framework_
- Compliance framework.
- -M, --output-modes _format_
- Output format.
- -o, --output-directory _dir_
- Output directory.
FAQ
What is the prowler-kubernetes command used for?
prowler kubernetes performs security assessment of Kubernetes clusters. It checks for misconfigurations, RBAC issues, pod security violations, and compliance against security best practices including the CIS Kubernetes Benchmark. The tool connects to the cluster using the current kubeconfig context and evaluates resources across namespaces. Results can be filtered by specific checks, namespaces, or compliance frameworks.
How do I run a basic prowler-kubernetes example?
Run `prowler kubernetes` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does --checks _checks_ do in prowler-kubernetes?
Specific checks to run.