Kubeshark
Kubeshark is an API traffic analyzer for Kubernetes, providing essential real-time protocol-level visibility for debugging and monitoring network interactions within K8s clusters.
Kubernetes entries
Talos
Talos Linux is a dedicated, secure, immutable, and minimal operating system specifically for running Kubernetes nodes. It's API-managed and declarative, eliminating configuration drift and traditional OS overhead like SSH or package managers.
kwatch
kwatch is a nice little tool I maintain that monitors Kubernetes clusters, detecting app crashes in real-time and sending instant notifications. It's focused on real-time crash detection and change monitoring within K8s.
Kube Downscaler
Kube Downscaler is a pragmatic tool for automatically scaling down Kubernetes deployments and other workloads during off-peak hours, like weekends or nights, to optimize resource usage and costs. I find it useful for non-production environments.
Kilo
Kilo is a multi-cloud network overlay built on WireGuard, designed for Kubernetes. It creates an encrypted layer 3 network, enabling secure communication for multi-cloud and multi-cluster Kubernetes deployments, even with NAT. This is a solid solution for federated clusters.
NSA Kubernetes Hardening Guidance
I consider the NSA's Kubernetes Hardening Guidance critical. It's an invaluable resource for securing deployments, providing a baseline from the most paranoid perspective to ensure robust protection against sophisticated threats.
rbac manager
rbac-manager is a Kubernetes operator that simplifies RBAC authorization through declarative custom resources. It manages role bindings and service accounts based on a desired state, which I find much clearer than direct management.
Reloader
Reloader is a valuable Kubernetes controller that solves a common pain point: automatically reloading deployments and other workloads when referenced ConfigMaps or Secrets are updated. This ensures configurations are always in sync without manual intervention.
Network Policy Editor
This is a visual editor for Kubernetes network policies, allowing me to easily define and visualize traffic rules for my clusters.
k8s.af
This site compiles public Kubernetes failure stories, offering a valuable resource to learn from operational incidents. It's an unvarnished look at common pitfalls and complex issues in K8s environments.
Infra App
Infra App is a desktop client for Kubernetes, offering instant management and monitoring capabilities directly from my workstation.
a8r
This is a neat Kubernetes annotations convention designed to make managing services significantly easier for developers by standardizing metadata.
kubectl Cheat Sheet
This kubectl cheat sheet provides a quick reference for common commands, covering topics like autocomplete setup, context management, resource creation with `apply`, and various methods for viewing Kubernetes objects. It's an indispensable resource for daily Kubernetes operations.
kubectl-neat
I find kubectl output often too verbose; this tool makes it readable by cleaning up extraneous metadata, default values, and status information from Kubernetes YAML and JSON.
K8s.af
K8s.af compiles public Kubernetes failure stories, ordered by recency. It's a critical resource for learning from common production blunders and improving cluster reliability.
Conftest
Conftest is a great utility for writing tests against structured configuration data, like Kubernetes YAMLs or Terraform. It uses Open Policy Agent's Rego language to define policies and validate configurations, which I find very practical for ensuring compliance and consistency.
k9s
K9s is a robust terminal UI for Kubernetes that allows me to effectively interact with my clusters, making navigation, observation, and management of applications a much more fluid and stylish experience than plain CLI or heavier GUIs.