auditing-kubernetes-rbac-permissions

Installation

SKILL.md

Auditing Kubernetes RBAC Permissions

Overview

Kubernetes Role-Based Access Control (RBAC) auditing systematically reviews roles, cluster roles, bindings, and service account permissions to identify overly permissive access, privilege escalation paths, and violations of least-privilege principles. Tools like rbac-tool, KubiScan, and rakkess automate discovery of dangerous permission combinations.

Prerequisites

Kubernetes cluster with RBAC enabled (default since 1.6)
kubectl with cluster-admin access for full audit
rbac-tool, rakkess, or KubiScan installed

Core Concepts

RBAC Components

Resource	Scope	Purpose
Role	Namespace	Grants permissions within a namespace
ClusterRole	Cluster	Grants permissions cluster-wide

Related skills

auditing-kubernetes-rbac-permissions

Auditing Kubernetes RBAC Permissions

Overview

Prerequisites

Core Concepts

RBAC Components

More from mukul975/anthropic-cybersecurity-skills

acquiring-disk-image-with-dd-and-dcfldd

analyzing-api-gateway-access-logs

analyzing-android-malware-with-apktool

analyzing-cyber-kill-chain

analyzing-email-headers-for-phishing-investigation

analyzing-active-directory-acl-abuse