Audience
DevOps, DevSecOps, Security
About Kubescape
A Kubernetes open-source platform providing developers and DevOps an end-to-end security solution, including risk analysis, security compliance, RBAC visualizer, and image vulnerabilities scanning.
Kubescape scans K8s clusters, Kubernetes manifest files (YAML files, and HELM charts), code repositories, container registries and images, detecting misconfigurations according to multiple frameworks (such as the NSA-CISA, MITRE ATT&CK®), finding software vulnerabilities, and showing RBAC (role-based-access-control) violations at early stages of the CI/CD pipeline. It calculates risk scores instantly and shows risk trends over time.
Kubescape has became one of the fastest-growing Kubernetes security compliance tools among developers due to its easy-to-use CLI interface, flexible output formats, and automated scanning capabilities, saving Kubernetes users and admins precious time, effort, and resources.
Other Popular Alternatives & Related Software
Runecast
Runecast is an enterprise CNAPP platform that saves your Security and Operations teams time and resources by enabling a proactive approach to ITOM, CSPM, and compliance. It automates vulnerability assessment, configuration drift management and continuous compliance – for VMware, Cloud and Containers.
By proactively using our agentless scanning in real-time admins discover potential risks and remediation solutions before any issues can develop into a major outage.
It provides continuous audits against vendor best practices, common security standards, and frameworks such as BSI IT-Grundschutz, CIS, Cyber Essentials, DISA STIG, DORA, Essential 8, GDPR, HIPAA, ISO 27001, KVKK, NIST, PCI DSS, TISAX, VMware Security Hardening Guidelines, and the CISA KEVs catalog.
Detect and assess risks and be fully compliant across your hybrid cloud in minutes.
Runecast has been recognized with Frost & Sullivan's 2023 European New Product Innovation Award in the CNAPP industry.
Learn more
Massdriver
At Massdriver, we believe in prevention, not permission, letting ops teams enforce guardrails while developers deploy confidently. Our platform encodes your non-negotiables into self-service modules built with your preferred IaC (Terraform, Helm, OpenTofu, etc.) standardizing infrastructure across AWS, Azure, GCP, and Kubernetes out-of-the-box.
By bundling policy, security, and cost controls into functional IaC assets, Massdriver cuts overhead for ops teams and speeds developer workflows. Through a central service catalog, developers can provision what they need with integrated monitoring, secrets management, and RBAC baked in. No more brittle IaC pipelines; ephemeral CI/CD spins up automatically from each module’s tooling.
Scale faster with unlimited cloud accounts and projects, all while reducing risk and ensuring compliance. Massdriver—fast by default, safe by design.
Learn more
Telepresence
Telepresence streamlines your local development process, enabling immediate feedback. You can launch your local environment on your laptop, equipped with your preferred tools, while Telepresence seamlessly connects them to the microservices and test databases they rely on. It simplifies and expedites collaborative development, debugging, and testing within Kubernetes environments by establishing a seamless connection between your local machine and shared remote Kubernetes clusters.
Why Telepresence:
Faster feedback loops: Spend less time building, containerizing, and deploying code. Get immediate feedback on code changes by running your service in the cloud from your local machine.
Shift testing left: Create a remote-to-local debugging experience. Catch bugs pre-production without the configuration headache of remote debugging.
Deliver better, faster user experience: Get new features and applications into the hands of users faster and more frequently.
Learn more
Fairwinds Insights
Protect and optimize your mission-critical Kubernetes applications. Fairwinds Insights is a Kubernetes configuration validation platform that proactively monitors your Kubernetes and container configurations and recommends improvements. The software combines trusted open source tools, toolchain integrations, and SRE expertise based on hundreds of successful Kubernetes deployments. Balancing the velocity of engineering with the reactionary pace of security can result in messy Kubernetes configurations and unnecessary risk. Trial-and-error efforts to adjust CPU and memory settings eats into engineering time and can result in over-provisioning data center capacity or cloud compute. Traditional monitoring tools are critical, but don’t provide everything needed to proactively identify changes to maintain reliable Kubernetes workloads.
Learn more
Pricing
Starting Price:
$0/month
Free Version:
Free Version available.
Free Trial:
Free Trial available.
Integrations
Company Information
Armo
Founded: 2019
Israel
www.armosec.io/kubescape/
Videos and Screen Captures
Other Useful Business Software
Our Free Plans just got better! | Auth0
You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
Product Details
Platforms Supported
Cloud
Windows
Mac
Linux
Training
Documentation
Live Online
Webinars
Videos
Support
Phone Support
Online
Kubescape Frequently Asked Questions
Kubescape Product Features
Container Security
Access Roles / Permissions
Container Stack Scanning
Image Vulnerability Detection
Reporting
Application Performance Tracking
Centralized Policy Management
Testing
View Container Metadata
