This playground was created by an iximiuz Labs user and is provided with no warranty.
OWASP K8s Vulnerable Cluster Playground
by Adam Leskis
This playground presents a k3s cluster that has randomized security vulnerabilities injected based on the OWASP Kubernetes Top 10 list for 2025. Run a scan to find what's wrong, then fix it and get another random vulnerability automatically injected. Play as long as you like!
Startup configuration
cplane-01
Using the kubernetes operator from this project to run a deliberately misconfigured k3s cluster.
Scan it using kubescape and fix it...then it'll automatically configure another randomized vulnerability so you can rinse and repeat as many times as you want.
The vulnerabilities are taken from the following OWASP Kubernetes 2025 list:
- K01: Insecure Workload Configurations
- K02: Overly Permissive Authorization Configurations (current implementation focuses on RBAC-driven authorization mistakes)
- K03: Secrets Management Failures
- K05: Missing Network Segmentation Controls
This playground was created by an iximiuz Labs user and is provided with no warranty.
by Adam Leskis
Actions
OWASP K8s Vulnerable Cluster Playground
This playground presents a k3s cluster that has randomized security vulnerabilities injected based on the OWASP Kubernetes Top 10 list for 2025. Run a scan to find what's wrong, then fix it and get another random vulnerability automatically injected. Play as long as you like!
Startup configuration
cplane-01
Using the kubernetes operator from this project to run a deliberately misconfigured k3s cluster.
Scan it using kubescape and fix it...then it'll automatically configure another randomized vulnerability so you can rinse and repeat as many times as you want.
The vulnerabilities are taken from the following OWASP Kubernetes 2025 list:
- K01: Insecure Workload Configurations
- K02: Overly Permissive Authorization Configurations (current implementation focuses on RBAC-driven authorization mistakes)
- K03: Secrets Management Failures
- K05: Missing Network Segmentation Controls