Kubernetes-native solution for monitoring containers’ behavior

About

“Luntry” is a Russian solution for security and monitoring of what is happening in Kubernetes (including OpenShift and Managed Kubernetes) at the level of containers, images, K8s resources, services, their interconnection and evolution.

official website

Luntry allows:

• make Kubernetes understandable at all levels: from containers to microservices;
• maintain a high level of security in a rapidly changing environment;
• plan security measures by visualizing components and their relationships;
• quickly respond to system failures and incidents;
• use the API to create resources and security policies.

Recently has been discovered a large number of serious vulnerabilities in cloud solutions and those that ensure their operation: CVE-2022-0811, CVE-2022-21701, CVE-2022-24348, CVE-2022-0492, CVE-2022-0847, CVE-2022-0185.

Companies are increasingly moving to Kubernetes, which requires continuous control of what is happening in the clouds and building DevSecOps processes.

What does Luntry provide to ensure Kubernetes reliable and secure operation?

• Image vulnerability management (based on Kubertenes operators);
• Policy Engine (Kyverno or OPA Gatekeeper);
• Runtime Security (detection based on eBPF sensor);
• Prevention (AppArmor policy)
• Relationship control between K8s resources;
• Clipboard history of changes for troubleshooting and root cuse analysis;
• Network visualization and protection (based on NetworkPolicy or ServiceMesh authorization policies);
• RBAC analysis (by subjects, rights and roles);
• Integration with SEIM (uploading to syslog in CEF format)

Luntry is a solution for all participants in the continuous development process and application lifecycle (DevSecOps) and their effective interaction.

Free pilot and deployment in 10 minutes.