kube-bench
« Back to VersTracker
Description:
Checks Kubernetes deployment against security best practices (CIS Benchmark)
Type: Formula  |  Latest Version: 0.14.1@0  |  Tracked Since: Dec 22, 2025
Links: Homepage  |  GitHub  |  @AquaSecTeam  |  formulae.brew.sh
Stars: 7,863  |  Forks: 1,308  |  Language: Go  |  Category: Security
Tags: kubernetes security compliance devsecops cis-benchmark
Install: brew install kube-bench
About:
kube-bench is an open-source tool that automates security compliance checks for Kubernetes clusters. It runs tests against the CIS Kubernetes Benchmark to identify misconfigurations and security risks. Its primary value is providing a standardized, automated way to assess and improve the security posture of Kubernetes deployments.
Key Features:
  • Automated CIS Benchmark compliance checks
  • Support for multiple Kubernetes distributions and versions
  • Detailed reporting with pass/fail results and remediation steps
  • Configurable test targets (master node, node, etcd, policies)
  • Output in JSON, JUnit, and plain text formats
Use Cases:
  • Pre-production security auditing of Kubernetes clusters
  • Continuous compliance monitoring in CI/CD pipelines
  • Educating teams on Kubernetes security best practices
Alternatives:
  • kube-hunter – Focuses on active security penetration testing rather than configuration compliance checks.
  • kubeaudit – Audits clusters against specific security policies rather than the comprehensive CIS Benchmark.
Version History
Detected Version Rev Change Commit
Dec 25, 2025 8:22pm 0.14.1 0 VERSION_BUMP 2056f995
Dec 22, 2025 11:11am 0.14.0 0 VERSION_BUMP be4fb2fb
Sep 11, 2025 6:14pm 0 VERSION_BUMP d3207520
Jan 10, 2025 5:21pm 0 NEW 1434f7d4
« Back to VersTracker  |  Browse Packages  |  About