Resource Center: Containers & Cloud Native Security

eBooks, Product Sheets, Whitepapers, Webinars and Videos

Get Liz Rice's New Container Security Book

Examining key underlying technologies to help Dev, Sec, and Ops professionals assess security risks and determine appropriate solutions.

Download the eBook

Live Webinars Watch Live Webinars

Taking Advantage of Object Labels while Controlling the Human Factor

Operationalize Your Cloud Native Security with Aqua’s New Dashboard

Runtime Protection for K8s Workloads Using a Mutating Admission Controller

Securing your K8s Infrastructure with Aqua KSPM

Read the Solution Brief

Auto-Remediation for Secure Configuration in Azure Cloud

Threat Alert: Market-First Container Image Built to Attack Kubernetes Clusters

Automating Kubernetes Security Reporting with Starboard Operator by Aqua

Research and Reports

Threat Report: Attacks in the Wild on Container Infrastructure

Get the Full Report

Using open source software to evolve enterprise-class security solutions

Download the Whitepaper

CVE-2020-15157: Vulnerability in Containerd Can Leak Cloud Credentials

Find Image Vulnerabilities Using GitHub and Aqua Security Trivy Action

Hacktoberfest 2020: Celebrate Open Source with Aqua!

Introducing KSPM by Aqua: Kubernetes Security Posture Management

Scanning Registries at Scale with Rules-based Image Pulls

Protecting Cloud VMs in Modern Cloud Native Stacks

Get the Solution Sheet

Online Retailer Leverages Aqua to Build Secure Cloud Native Applications from the Start

Read the Case Study

Deploy Aqua at the Speed of DevOps using Red Hat Marketplace

Protecting Cloud VMs for Full-Stack Cloud Native Security

Securing Container Workloads on AWS Bottlerocket

Secure your cloud-native applications – an AWS customer case study

In partnership with AWS

Watch the Webinar

Threat Alert: Massive Cryptomining Campaign Abusing GitHub, Docker Hub, Travis CI & Circle CI

Internet Services Provider Kakaku.com Improves Security and Operational Efficiency with Aqua

Read the Case Study

Achieving Least Privilege Access in Kubernetes

Watch the Webinar

Beyond Vulnerability Scanning

Watch the Webinar

Deep Analysis of TeamTNT Techniques Using Container Images to Attack

The Sharp Edges of Kubernetes Security

Watch the Webinar

Kubernetes in the Context of an ISO 27001 Certification

Watch the Webinar

Aqua Security: The Complete Cloud Native Security Platform

Download Solution Sheet

kubectl Support for PKCS#11 Hardware Security Module

Watch the Webinar

Uncover Malware Payload Executions Automatically with Tracee

The Container Security Checklist

Watch the Webinar

Kubernetes Secrets - The Good, The Bad and The Ugly

Watch the Webinar

BeerSecOps #15 with Cheryl Hung: The CNCF End User Community & Virtual KubeCon

Listen to Podcast

DevOps and Security – An Uneven Journey

Watch the Webinar

Achieving a Self-Securing Infrastructure in Public Clouds

BeerSecOps #14: The Evolution of CSPM with Cloudsploit Founders

Listen to Podcast

Bringing Unconstrained Flexibility to Cloud Native Security

Threat Alert: An Attack Against a Docker API Leads To Hidden Cryptominers

Research and Reports

2020 Market Guide for Cloud Workload Protection Platforms

Read the Report

Using Trivy to Discover Vulnerabilities in VS Code Projects

BeerSecOps #13: Security for Serverless Functions with Dean Bryen

Listen to Podcast

Threat Alert: Attacker Building Malicious Images Directly on Your Host

Segregation of Duties in Multi-Tenant Cloud Native Environments

Download the Whitepaper

Role-Based Access Control in Modern Cloud Native Security

Secure Windows Containers on GKE clusters

Watch the Video

AIB Centralizes their Container Security with Aqua

Read the Case Study

Risk-Based Vulnerability Management in Container Images

Running Compliance Checks with Aqua

Watch the Video

Mitigating High Severity CVEs Affecting SaltStack on Public Clouds

Deploying Aqua CSP on AWS Fargate

Watch the Video

Starboard: The Kubernetes-Native Toolkit for Unifying Security

How to Integrate Aqua with a Registry

Watch the Video

Visualize and Prioritize Risks in Kubernetes with Aqua Risk Explorer

KubeSec Enterprise Online -
A Webinar Series

A Webinar Series

Why You Need & How to Evaluate Cloud Native Security Solution

Watch the Webinar

How to Deploy Aqua Enforcers on Windows VMs

Watch the Video

Deploy Aqua on GKE on the GCP Marketplace

Watch the Video

Dynamic Analysis of Container Images for Detecting Stealthy Malware

Watch the Webinar

Visualize Risks in Your K8s Clusters with Aqua Risk Explorer

Watch the Video

Deploying Aqua CSP for ECS in the AWS Marketplace

Watch the Video

Aqua Partners with GCP to Secure Windows Containers on GKE

How to Integrate Aqua with Jenkins

Watch the Video

O'Reilly and Liz Rice - NEW Container Security Book

Download the eBook

BeerSecOps #12: Michael Hausenblas on Software Supply Chain Management (via GitOps)

Listen to Podcast

Desenvolvimento Ágil e Seguro? - Desafios e Soluções

Watch the Webinar

Dynamic Threat Analysis for Container Images: Uncovering Hidden Risks

Aqua Dynamic Threat Analysis (DTA) for Aqua CSP

Download Solution Sheet

Threat Alert: Kinsing Malware Attacks Targeting Container Environments

Aqua Dynamic Threat Analysis (DTA) for Aqua CSPM

Download Solution Sheet

Blocking Attacks in Runtime with Drift Prevention

Trivy Image Vulnerability Scanner Now Under Apache 2.0 License

Scanning Image Layers, Prometheus, and Harbor Integrations

BeerSecOps #11: Liz Rice - The Container Security Book

Listen to Podcast

Aqua CSP Globally Whitelisted for ARO: Red Hat OpenShift on Azure

Kube-Query: A Simpler Way to Query Your Kubernetes Clusters

Defense in Depth: Securing Your Kubernetes Workloads on VMware Enterprise PKS

Watch the Webinar

BeerSecOps #10: Tanya Janca – AppSec Education

Listen to Podcast

AppDev in Kubernetes: Automation and Security with Azure Red Hat OpenShift

Watch the Webinar

BeerSecOps #09: Gene Kim – The Unicorn Project

Listen to Podcast

AWS & Aqua Security: Integrated Dashboard Prioritizes Cloud Native Security Alerts

Watch the Webinar

Prevention is Better Than Cure - A KubeSec Encore Presentation

Watch the Webinar

Cloud Native Security Best Practices: Using Kubernetes Admission Controller for Image Assurance

A Calculated, Visual, Risk-Based Approach for Exploring Your Security Risks

Announcing General Availability of CloudSploit by Aqua for GCP

Harbor Image Scanning Adapter Setup

Watch the Webinar

BeerSecOps #08: Kelsey Hightower

Listen to Podcast

Hack-Proofing Your Kubernetes Clusters

Watch the Webinar

Clarizen secures Kubernetes-based cloud native apps on AWS with Aqua Security

Read the Case Study

Threat Alert: Exploiting Open Docker Daemons for DDoS Attacks

A Deep Dive into eBPF:
The Technology that Powers Tracee

What You Need to Know About AWS Lambda Functions Risk Mitigation

CloudSploit Solution Sheet

Download Solution Sheet

Cloud Native Best Practices: Security Policies in CI/CD Pipelines

Adrian Goins, Rancher, Rio, & Farming

Listen to Podcast

2020 Blueprint for Cloud Native Security

Watch the Webinar

NCR Securely Transitions to Multi-Cloud Microservices Applications with Aqua

Read NCR Case Study

A Brief History of Containers: From the 1970s Till Now

Cloud Native Security Best Practices: Vulnerability Management

Trends in Data Security for Containers

DevSecOps with Trivy and GitHub Actions

Pluggable Image Vulnerability Scanners for Harbor

Meet Elissa Shevinsky, Founder & CEO of Faster Than Light, Author of "Lean Out"

Listen to Podcast

Aqua Integrates with AWS Security Hub: Closing the Gap on Cloud Native Security

Cloud Native Application Platform Security 101

BeerSecOps #05:
With Michael Man The Man Behind the DevSecOps London Gathering

Listen to Podcast

A CloudSploit Case Study:
Trek10's Three AWS Cloud Security Concerns
& One Solution

Aqua Cloud Security Posture Management with CloudSploit

Pivotal and Aqua Security: Full-Stack Security for Enterprise PKS

Expanding into CSPM and Deepening Cloud VM Security

All About OWASP
with Sam Stepanyan

Listen to Podcast

DtSR Episode 368
Contain(er) Your Security

Listen to Podcast

DevSecOps - Humans Vs Non-Humans
with Josh Kirkwood

Listen to Podcast

Go Time - Episode #97 Live from Gophercon UK with Liz Rice

Listen to Podcast

Cloud Native and Open Source
with Liz Rice

Listen to Podcast

Discussing GitOps with
Andy Martin (Control Plane)

Listen to Podcast

Tracee: Tracing Containers with eBPF

Performance-Optimized Runtime Protection for Serverless Functions
with Aqua

Optimized Logging for Container Workloads Using AWS FireLens

Aqua Security for Pivotal Application Service (PAS)

Get the Solution Sheet

Cloud VM Security
with Aqua CSP

Research and Reports

A Gartner Report: Best Practices for Running Containers and Kubernetes in Production

Download the Full Report

Research and Reports

CyberEdge Group:
Annual Cyberthreat Defense Report

CVE-2019-14287 sudo Vulnerability Allows Bypass of User Restrictions

Operating Kubernetes Clusters and Applications Safely

Kubernetes RBAC: Audit Your Cluster’s RBAC Configuration for Vulnerabilities

Container Adoption Report:
Understanding Container Adoption With a Special Focus on Container Security

Get the Full Report

Native Runtime Protection for
Pivotal Cloud Foundry

Pivotal Platform - Getting Started with Native Runtime Protection for PAS

DevSecOps, Making it Happen: The Essential DevSecOps Guide

Securing Hybrid Cloud Workloads on Google Anthos

The Definitive Guide to Securing Kubernetes

GopherCon 2019 Spotlight, Part 2
with Liz Rice

Listen to Podcast

Kubernetes RBAC: Asking for Forgiveness or Getting Permission

Container Security: How to Protect Your Production Environment from Threats

Just Download and Run – Trivy Open Source Scanner for Container Images

Protecting Kubernetes Secrets:
A Practical Guide

Aqua Security for VMware Enterprise PKS

Download Solution Sheet

DNS Spoofing on Kubernetes Clusters

Introduction to Kubernetes Security
An Aqua and WeaveWorks Joint webinar

Virtual Container Patching: Control Known Vulnerabilities Detected in Container Images

Research and Reports

How Aqua Secures Containers From Development To Production

Get the Complete Review

Research and Reports

451 Business Impact Brief:
Security for Cloud Native Compute
Will Be Different

Kubernetes Pod Escape
Using Log Mounts

Aqua Operator: Automating Security for Kubernetes

Aqua Serverless Security for AWS Lambda

Knative: The Serverless Environment for Kubernetes Fans

Read on the Aqua Blog

Security Configuration Benchmarks for Kubernetes

Vulnerability Management Strategies for Cloud Native Security

Video compliance tech innovator Theta Lake ensures compliance on Amazon ECS

Read the Customer Story

Protéger vos applications conteneurisées du développement

Rethinking Cloud Security for Cloud Native Applications

Aqua Security for AWS Lambda Functions

Download Data Sheet

57 Easy Steps to Secure Serverless Functions

Securing Containers and Serverless
on AWS

Download Whitepaper

Research and Reports

Frost & Sullivan Report
Serverless Security Maturing: Serverless Adoption & Competitive Security Options are Expanding

Download the Report

Research and Reports

Securosis Analyst Report:
The Guide to Enterprise Container Security

Research and Reports

A SANS Survey:
Secure DevOps: Fact or Fiction?

From Containers to Serverless: Keys to Securing Cloud Native Workloads

Shifting Left:
Security Through Automation

Istio Security: Zero-Trust Networking

Security for Pivotal PAS and PKS

Serverless Security: The Importance of FaaS Risk Assessment

DevOps Chat: Container Security and Aqua 3.5

Listen to Podcast

Deploying a PCI DSS-Compliant Kubernetes Cluster

Istio: The Enterprise Upgrade Path to Microservices

Severe Privilege Escalation Vulnerability in Kubernetes (CVE-2018-1002105)

Research and Reports

A DZone RefCard:
Kubernetes Security

Download the RefCard

Security in the New World of Containers and Serverless

Container Security:
10 Things DevOps Need to Do

Aqua Security for
Azure Container Service
and Windows Containers

Download Solution Sheet

Aqua for Commercial Kubernetes Apps in GCP Marketplace

Download Solution Sheet

Kubernetes Deployments &
Security Patterns

Aqua Security for AWS
Cloud Native Workloads

Download Solution Sheet

Active Workload Protection
on AWS Fargate

NIST SP 800-190
Container Security Guide

Download the Whitepaper

Improve Security with Automated Image Scanning Through CI/CD
With Liz Rice, Technology Evangelist

Listen to Podcast

Kube-Bench: An OSS Tool for Running Kubernetes CIS Benchmark Tests

CI/CD with Kubernetes:
Use cases and best practices for how Kubernetes helps facilitate CI/CD

Streamline Image
Vulnerability Management for
OpenShift Image Streams

Red Hat OpenShift: Container Vulnerability Scanning

Listen to Podcast

Kube-hunter: An Open Source Tool for Kubernetes Penetration Testing

Aqua Container Security for Red Hat Openshift

Download Data Sheet

Aqua Integrates with Google’s Cloud Security Command Center

Aqua MicroScanner:
Free Image Vulnerability Scanning Plugin for Jenkins

Docker Security Best Practices

Continue Reading

Containers Development & Management
DZone Guide

Kubernetes, Metadata, and You (KubeCon NA 2017)

Kubernetes Security Deep-Dive

Using Aqua to Secure Applications on Pivotal Cloud Foundry

Equifax Breach Contained by Containers

Compliance Guide: Achieving HIPAA Compliance for Containers

Download the Whitepaper

Demo of Aqua Security for PCF

Aqua on OpenShift
Level-Up Your Container Security Game - Part I

Achieving PCI-DSS Compliance for Containers

Download the Whitepaper

Securing Serverless: Persistent Security for Ephemeral Environments

The Ultimate Guide to Secrets Management in Containers

How to Secure Amazon ECS Workloads On Demand

Compliance Guide: Achieving GDPR Compliance for Containers

Download the Whitepaper

Containers from Scratch - The Sequel (ContainerCamp AU 2017)

Your Secret's Safe with Me - Securing Container Secrets with Vault

MicroScanner: Free Image Vulnerability Scanner for Developers

Grafeas and Image Vulnerability Scanning

Kubernetes 1.10: What’s New in Security

Governance and Control for The Container Supply Chain Using Aqua Security and Google Grafeas

Aqua - ArcSight Product Brieft

Download Solution Sheet

Aqua Security Locking Down the Container Security Market

Listen to Podcast

Managing Secrets in Docker Containers

Continue Reading

Securing Containers on OpenShift

Containers: The Dr. Jekyll and Mr. Hyde of Security - RSAC 2017 Presentation

Docker Image Vulnerability Scanning in Microsoft Visual Studio Team Services

Scanning Docker Images on a Massive Scale

Infographic: DevOps, Security or DevSecOps?

View Infographic

Protecting Hybrid-Cloud Workloads? Lessons from ESG Survey

Docker Networking and Kubernetes Networking Tools

Try Aqua Wave
The fast track to secure your cloud

Need to secure enterprise workloads?

Aqua Enterprise

Go cloud native with the experts!

Get Demo

Aqua Blog
All about cloud native
and security

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed. Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions, and cloud VMs.

Copyright © 2020 Aqua Security Software Ltd. Privacy Policy | Terms of Use