• Stars
    star
    385
  • Rank 111,464 (Top 3 %)
  • Language
    Go
  • Created over 5 years ago
  • Updated 11 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Deep kubernetes visibility from the kubectl

kubectl dig

Deep kubernetes visibility from the kubectl.

kubectl dig logo kubectl dig
A simple, intuitive, and fully customizable UI to dig into your kubernetes clusters
kubectl dig <node>

asciicast

Install

go get -u github.com/sysdiglabs/kubectl-dig/cmd/kubectl-dig

Usage

Just dig

There's only one thing to do, provide the node name!

kubectl dig <node>

You just identify the node you want to dig in with kubectl get nodes and then provide it to the dig command!

kubectl dig ip-180-12-0-152.ec2.internal

dig + cluster metadata

By default, kubectl dig shows only information about the local node, if you want to dig from that node to the whole cluster you have to provide a service account that can read resources.

You can create a dig-viewer service account with:

kubectl apply -f https://github.com/sysdiglabs/kubectl-dig/raw/develop/docs/setup/read-serviceaccount.yml

Then you just use it with kubectl dig.

kubectl dig --serviceaccount dig-viewer 127.0.0.1

At this point you have access to the fancy cluster metadata, press F2 and look for the K8s views!

Project status

High-level todo

  • Basic functionalities;
  • Finish all the planned commands;
  • Merge here the functionalities of kubectl-capture;
  • Integration tests;
  • Errors detection on the kernel module;

Planned commands

  • run command, to execute digs;
  • list command, to list all the executed digs;
  • attach command, to attach to an existing dig that was previously detached;
  • delete command, to delete an existing dig;
  • where command, to execute digs where the chosen workloads are, instead of having to specify the node directly;

Analytics

More Repositories

1

kube-psp-advisor

Help building an adaptive and fine-grained pod security policy
Go
330
star
2

promcat-resources

Python
139
star
3

kubectl-capture

A kubectl plugin which triggers a Sysdig capture
Shell
99
star
4

sysdig-sdk-python

Sysdig Platform Python client library
Python
64
star
5

opa-image-scanner

Kubernetes Admission Controller for Image Scanning using OPA
Open Policy Agent
50
star
6

terraform-provider-sysdig

Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.
Go
47
star
7

charts

The official source for Sysdig’s Helm charts
Smarty
41
star
8

kube-apparmor-manager

Manage AppAmormor profiles for Kubernetes cluster
Go
37
star
9

k8s-security-configwatch

Git action to generate security lint report for Kubernetes workload YAML files on PR
Shell
29
star
10

scan-action

Inline Image Scan Github Action
TypeScript
28
star
11

ekscloudwatch

Forward EKS CloudWatch k8s audit events to Sysdig secure
Go
27
star
12

kube-policy-advisor

Go
21
star
13

secure-inline-scan

Shell
19
star
14

falco-aws-firelens-integration

Makefile
13
star
15

security-playground

This is a sample application which runs an HTTP web server and allows to read and write files and exec commands
Python
13
star
16

terraform-aws-secure-for-cloud

Terraform module that deploys the Sysdig Secure For Cloud stack in AWS
HCL
13
star
17

sysdig-operator

Sysdig agent Operator configure Sysdig platform in your Kubernetes cluster
Makefile
12
star
18

SETechAssessment

12
star
19

game-of-pods

An open source game for cloud natives
JavaScript
12
star
20

vscode-falco

Falco Rules helpers for VSCode
TypeScript
12
star
21

benchmark-dockerfile

Github action to benchmark dockerfiles in github repository.
Shell
12
star
22

image-scanning-admission-controller

Kubernetes admission controller that validate image in deployment is vulnerability free
Shell
11
star
23

falco-workshop

Shell
11
star
24

program-minecraft

Everything you need to create a development environment for "Learn to Program with Minecraft
Dockerfile
11
star
25

stackdriver-webhook-bridge

Forward and Convert GKE K8s Audit Events to Falco/Sysdig Agent
Go
10
star
26

falco-nats

Publish Falco Alerts to A NATS messaging server with a simple Go NATS client.
Python
9
star
27

custom-metrics-examples

Java
9
star
28

secure-inline-scan-examples

Example code and information about how to use Sysdig inline scan for several integrations
Shell
9
star
29

terraform-eksblueprints-sysdig-addon

Sysdig Terraform AWS EKS Blueprint and addon
HCL
7
star
30

terraform-aws-fargate-orchestrator-agent

HCL
6
star
31

dummy-vuln-app

Flask application with vulnerabilities
Python
6
star
32

harbor-scanner-sysdig-secure

Use Sysdig Secure as a plug-in vulnerability scanner in the Harbor registry
Go
5
star
33

aws-templates-secure-for-cloud

Deploy Sysdig Secure for cloud with AWS Cloudformation
Makefile
5
star
34

hug-a-ton

Automate the way to foster appreciation culture in slack!
Python
4
star
35

agent-ansible-collection

Ansible collection to manage the Sysdig Agent
Python
4
star
36

cloud-iac-scanner-action

Shell
4
star
37

dockerfile-benchmarker

CIS Docker Benchmark for dockerfiles
Go
4
star
38

Sysdig-Windows-Prometheus-Bundle

Sysdig bundle for Windows with Prometheus Agent and Windows Exporter
4
star
39

backstage-plugin-sysdig

Backstage Sysdig Plugin
TypeScript
4
star
40

integrations-charts

Mustache
3
star
41

aks-audit-log

Instructions and code to connect Azure Kubernetes Service audit logs to Sysdig agent
Shell
3
star
42

falco-analyzer

Falco rules analyzer script
Python
3
star
43

compliance-training

Compliance Training Repo for Sysdig Secure
HCL
2
star
44

sysdig-trial-lab

2
star
45

terraform-google-secure-for-cloud

Terraform module that deploys the Sysdig Secure For Cloud stack in Google Cloud Platform
HCL
2
star
46

se-workshop

SE workshop
Python
2
star
47

secure-image-scanning

Image scanning with Sysdig Secure
Shell
1
star
48

policy-editor-attack

Shell
1
star
49

sysdigQueryTranslator

Go
1
star
50

exporter-builder

1
star
51

gcp-workshop-sysdig

Sysdig workshop introducing how to secure GCP environments from scratch
Shell
1
star
52

TechAssessments

Tech assessments
1
star
53

terraform-azurerm-secure-for-cloud

Terraform module that deploys the Sysdig Secure For Cloud stack in Azure
HCL
1
star
54

rhc-manager

Go
1
star