kube-bench

kube-bench is an open-source Kubernetes security auditing tool by Aqua Security that checks whether Kubernetes clusters are deployed securely by running automated compliance checks against the CIS Kubernetes Benchmark to identify misconfigurations and security weaknesses in cluster components including API servers, controller managers, schedulers, etcd, kubelets, and network policies. The tool executes comprehensive security assessments using YAML-configured tests that can be run as Kubernetes jobs, standalone containers, or command-line applications to verify adherence to security best practices, providing detailed pass/fail results with remediation guidance to help organizations harden their Kubernetes infrastructure across master nodes, worker nodes, and control plane components.