OWASP K8s Vulnerable Cluster Playground
This playground presents a k3s cluster that has randomized security vulnerabilities injected based on the OWASP top 10 kubernetes list. Run a scan to find what's wrong, then fix it and get another random vulnerability automatically injected. Play as long as you like!
Using the kubernetes operator from this project to run a deliberately misconfigured k3s cluster.
Scan it using kubescape and fix it...then it'll automatically configure another randomized vulnerability so you can rinse and repeat as many times as you want.
The vulnerabilities are taken from the following OWASP Kubernetes 2022 (cause 2025 isn't done yet) list:
K01 - insecure workload configurations
K03 - overly permissive RBAC
K07 - network segmentation
K08 - secrets management
Actions
OWASP K8s Vulnerable Cluster Playground
This playground presents a k3s cluster that has randomized security vulnerabilities injected based on the OWASP top 10 kubernetes list. Run a scan to find what's wrong, then fix it and get another random vulnerability automatically injected. Play as long as you like!
Using the kubernetes operator from this project to run a deliberately misconfigured k3s cluster.
Scan it using kubescape and fix it...then it'll automatically configure another randomized vulnerability so you can rinse and repeat as many times as you want.
The vulnerabilities are taken from the following OWASP Kubernetes 2022 (cause 2025 isn't done yet) list:
K01 - insecure workload configurations
K03 - overly permissive RBAC
K07 - network segmentation
K08 - secrets management