Please login or sign up to post and edit reviews.
Trivy and Tracee, Aqua Security Tools
Podcast |
DevOps and Docker Talk
Publisher |
Bret Fisher
Media Type |
audio
Podknife tags |
Interview
Technology
Web Development
Categories Via RSS |
Education
How To
News
Tech News
Publication Date |
Jan 20, 2023
Episode Duration |
00:40:08

Bret is joined by Anaïs Urlichs of Aqua Security to talk container and Kubernetes security tools like trivy, kube-bench, tracee, and kube-hunter. I've been using trivy for over four years to scan for known vulnerabilities in my own container images and my clients.

We also look at tracee, a new tool that is part of a new generation of tools that use the Linux kernel eBPF feature to investigate what's happening in real time on your servers. Anaïs is great as an explainer of Kubernetes and all cloud native things, and she's the creator of the 100 days of Kubernetes tutorials on her YouTube channel where she breaks down various cloud native topics for beginners. Based on what I've learned in this show from Anaïs, I plan to change how I use trivy so that it's scanning more things and more often in my CI automation pipelines.

Streamed live on YouTube on November 3, 2022.

Unedited live recording of this show on YouTube (Ep #190)

Topics★Aqua Security ToolsAqua Security on YouTubeTrivyTrivy-Operatorkube-benchtraceekube-hunter

★Anaïs Urlichs★Anaïs on TwitterAnaïs' Newsletter Anaïs on YouTube 100 Days of Kubernetes

Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box

Homepage bretfisher.com

  • (00:00) - DDT MAIN
  • (00:04) - Intro
  • (00:53) - Custom intro
  • (02:28) - Main show
  • (02:32) - Introducing Anais
  • (04:30) - Security Tools
  • (04:56) - What is Aqua Security
  • (06:12) - Not all security scanners are made equal
  • (07:22) - What is Trivy?
  • (08:01) - Misconfiguration scanning with Trivy
  • (12:12) - Security vs Disruption
  • (13:06) - Address vulnerabilities in the base image
  • (14:11) - Question: Operator for Trivy
  • (17:51) - Automating the tool
  • (19:45) - Vulnerability fatigue
  • (20:32) - Question: Go and No-go Criteria
  • (24:13) - Tip Toe, Start Small
  • (25:19) - Kube Bench
  • (26:08) - Kube Hunter
  • (28:09) - What is Tracee?
  • (33:39) - What is the roadmap for implementing these tools?
  • (39:57) - Outro

You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

Grab the best coupons for my Docker and Kubernetes courses.Join my cloud native DevOps community on Discord.Grab some merch at Bret's Loot BoxHomepage bretfisher.com

Bret is joined by Anaïs Urlichs of Aqua Security to talk container and Kubernetes security tools like trivy, kube-bench, tracee, and kube-hunter.

Bret is joined by Anaïs Urlichs of Aqua Security to talk container and Kubernetes security tools like trivy, kube-bench, tracee, and kube-hunter. I've been using trivy for over four years to scan for known vulnerabilities in my own container images and my clients.

We also look at tracee, a new tool that is part of a new generation of tools that use the Linux kernel eBPF feature to investigate what's happening in real time on your servers. Anaïs is great as an explainer of Kubernetes and all cloud native things, and she's the creator of the 100 days of Kubernetes tutorials on her YouTube channel where she breaks down various cloud native topics for beginners. Based on what I've learned in this show from Anaïs, I plan to change how I use trivy so that it's scanning more things and more often in my CI automation pipelines.

Streamed live on YouTube on November 3, 2022.

Unedited live recording of this show on YouTube (Ep #190)

Topics★Aqua Security ToolsAqua Security on YouTubeTrivyTrivy-Operatorkube-benchtraceekube-hunter

★Anaïs Urlichs★Anaïs on TwitterAnaïs' Newsletter Anaïs on YouTube 100 Days of Kubernetes

Join my Community★New live course on CI automation and gitops deploymentsBest coupons for my Docker and Kubernetes coursesChat with us and fellow students on our Discord Server DevOps FansGrab some merch at Bret's Loot Box

Homepage bretfisher.com

  • (00:00) - DDT MAIN
  • (00:04) - Intro
  • (00:53) - Custom intro
  • (02:28) - Main show
  • (02:32) - Introducing Anais
  • (04:30) - Security Tools
  • (04:56) - What is Aqua Security
  • (06:12) - Not all security scanners are made equal
  • (07:22) - What is Trivy?
  • (08:01) - Misconfiguration scanning with Trivy
  • (12:12) - Security vs Disruption
  • (13:06) - Address vulnerabilities in the base image
  • (14:11) - Question: Operator for Trivy
  • (17:51) - Automating the tool
  • (19:45) - Vulnerability fatigue
  • (20:32) - Question: Go and No-go Criteria
  • (24:13) - Tip Toe, Start Small
  • (25:19) - Kube Bench
  • (26:08) - Kube Hunter
  • (28:09) - What is Tracee?
  • (33:39) - What is the roadmap for implementing these tools?
  • (39:57) - Outro

You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!

Grab the best coupons for my Docker and Kubernetes courses.Join my cloud native DevOps community on Discord.Grab some merch at Bret's Loot BoxHomepage bretfisher.com

This episode currently has no reviews.

Submit Review
This episode could use a review!

This episode could use a review! Have anything to say about it? Share your thoughts using the button below.

Submit Review