InsightCloudSec Docs

Welcome to the InsightCloudSec Docs!

InsightCloudSec by Rapid7 (formerly DivvyCloud) is a Cloud-Native Security Platform that provides real-time analysis and automated remediation for continuous security and compliance for your multi-cloud environment.

For questions reach out to us through [email protected].

Take Me to the Docs!    Release Notes

Kubernetes Common Vulnerabilities and Exposures (CVE) Compliance Pack

A Detailed Summary of the Kubernetes Common Vulnerabilities and Exposures Compliance Pack Available in InsightCloudSec

The new Kubernetes CVE (Common Vulnerabilities and Exposures) Pack contains a group of Insights that can help give you visibility into publicly known Kubernetes and Istio vulnerabilities. InsightCloudSec updates Insights soon after disclosure of new CVEs allowing you to scan your infrastructure to quickly detect application weaknesses.

  • This pack includes Insights around vulnerabilities published by the Mitre Corporation - whose CVE Program was created to identify, define, and catalog publicly disclosed vulnerabilities and is sponsored by the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA).
  • For more details on these type of vulnerabilities you can also visit the National Vulnerability Database.

📘

Compliance Disclaimer

InsightCloudSec provides our customers with various compliance packs that can help align with a variety of cybersecurity/compliance organizations and their requirements. It is important to note that while InsightCloudSec can offer support for a number of standards, none of the capabilities we offer, including our compliance packs, are intended to individually provide 100% adherence to any security standard.

Prerequisites

Before you get started with any compliance packs, you will need to have the following:

  • A functioning InsightCloudSec installation
  • The appropriate permissions to apply this Compliance Pack to your desired infrastructure
  • Kubernetes Security Guardrails enabled on your designated clusters
  • Familiarity with your organization’s compliance requirements

If you have questions about implementing this compliance pack or other general questions, reach out to us via [email protected].

Feature Summary

This is the first edition of this new Kubernetes Compliance Pack and includes 64 Insights. It includes checks around issues like:

  • Malicious containers in Kubernetes clusters allowing man-in-the-middle-attacks (CVE-2020-10749)
  • Kube-apiserver that could allow node updates to bypass a Validating Admission Webhook (CVE-2021-25735)
  • Vulnerability to a denial of service attack via the kubelet API (CVE-2020-8551)

What's Next

To learn more about using both the out-of-the-box Compliance Packs and our Custom Insight Packs, take a look at our Insights documentation.

In addition, to explore more details around our automation capabilities, take a look at our documentation on BotFactory.

Updated 6 days ago

Kubernetes Common Vulnerabilities and Exposures (CVE) Compliance Pack


A Detailed Summary of the Kubernetes Common Vulnerabilities and Exposures Compliance Pack Available in InsightCloudSec

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.