AWS EKS
Version: 1.1
Updated: July 13, 2024
AWS EKS streamlines Kubernetes application deployment, ensuring scalability and security with minimal management overhead. This integration provides comprehensive Kubernetes cluster insights, node and pod management, volume tracking, and configuration updates.
Actions​
- Cordon Node (Containment) - By cordoning the impacted worker node, you're informing the scheduler to avoid scheduling pods onto the affected node. This will allow you to remove the node for forensic study without disrupting other workloads.
- Create Network Policy to Isolate Pod (Containment) - Isolate the Pod by creating a Network Policy that denies all ingress and egress traffic to the pod.
- Delete Pod (Containment) - Delete a Pod.
- Describe Cluster (Enrichment) - Describes an Amazon EKS cluster.
- Get Insight (Enrichment) - Returns details about an insight that you specify using its ID.
- Get Network Policy (Enrichment) - Get the specified Network Policy.
- Get Node (Enrichment) - Get Worker Node.
- Get Pod (Enrichment) - Get the specified Pod.
- Identify Pods with Vulnerable Image (Enrichment) - Identify Pods with vulnerable or compromised image and worker nodes.
- List Clusters (Enrichment) - Lists the Amazon EKS clusters in your AWS account in the specified AWS Region.
- List Deployment (Enrichment) - List objects of kind Deployment.
- List Insights (Enrichment) - Returns a list of all insights checked for against the specified cluster.
- List Namespaces (Enrichment) - List objects of kind Namespace.
- List Network Policy (Enrichment) - List objects of kind Network Policy.
- List Nodes (Enrichment) - Returns a list of all Nodes.
- List Persistent Volumes (Enrichment) - Returns a list of Persistent Volumes.
- List Pods (Enrichment) - Returns a list of Pods for all namespaces.
- Read Namespaced Pod Status (Enrichment) - Read the status of the specified Pod.
- Read Node Status (Enrichment) - Read the status of the specified Node.
- UnCordon Node (Containment) - UnCordon the worker node
- Update Cluster Config (Containment) - Updates an Amazon EKS cluster configuration.
External Libraries​
Change Log​
- April 18, 2024 (v1.0) - First upload
- July 13, 2024 (v1.1)
- Docker has been updated for AWS EKS
- Added New Actions:
- Cordon Node
- Create Network Policy to Isolate Pod
- Delete Pod
- Get Insight
- Get Network Policy
- Get Node
- Get Pod
- Identify Pods with Vulnerable Image
- List Deployment
- List Namespaces
- List Network Policy
- UnCordon Node
- List of changes grouped by Actions:
- List Insights
- Added new Filter Field
- Updated output
- List Nodes
- Added new Limit Field
- Updated output
- List Pods
- Added selector to restrict the list of returned objects by their field
- Added new Limit Field
- Updated output
- Read Namespaced Pod Status
- Updated output
- Read Node Status
- Updated output
- Update Cluster Config
- Updated resources VPC Config text field to a textarea field
- Added output
- List Insights