Resource Center › Blog

Infographic: From Cloud Security Posture Management to Real-Time CSPM

Securing GitHub Actions with Trivy and Cosign

Empowering Developers to Succeed: How and Why I Joined Aqua

The Nightmare Before Christmas: Looking Back at Log4j Vulnerabilities

Docker Security Best Practices

Taking IaC Security to the Next Level: Why TFsec Joined Aqua

Using LSM Hooks with Tracee to Overcome Gaps with Syscall Tracing

Infrastructure as Code security with Trivy

Detect and Prevent Exploits in Runtime with Vulnerability Shielding

The Story of Tracee: The Path to Runtime Security Tool

What’s New in the Docker and Kubernetes CIS Benchmarks

Vulnerability Scanning for Kubernetes Applications: Why and How

Boosting Container Security with Rootless Containers

Aqua’s Top Five Threat Alerts for 2020

Unveiling Aqua Vulnerability Database, Strengthen Your K8s Clusters

Taking Advantage of Object Labels while Controlling the Human Factor

Aqua Secures Container Image Support in AWS Lambda

Auto-Remediation for Secure Configuration in Azure Cloud

CVE-2020-15275: New Vulnerability Exploits containerd-shim API

Evaluating and Enforcing Least Privilege in Kubernetes with Aqua KSPM

Operationalize Your Cloud Native Security with Aqua’s New Dashboard

Runtime Protection for K8s Workloads Using a Mutating Admission Controller

Secure your Digital Transformation on Amazon EKS-Distro with Aqua

Threat Alert: Market-First Container Image Built to Attack Kubernetes Clusters

Threat Alert: Fileless Malware Executing in Containers

Automating Kubernetes Security Reporting with Starboard Operator by Aqua

CVE-2020-15157: Vulnerability in Containerd Can Leak Cloud Credentials

Find Image Vulnerabilities Using GitHub and Aqua Security Trivy Action

Hacktoberfest 2020: Celebrate Open Source with Aqua!

Introducing KSPM by Aqua: Kubernetes Security Posture Management

Scanning Registries at Scale with Rules-based Image Pulls

Deploy Aqua at the Speed of DevOps using Red Hat Marketplace

Protecting Cloud VMs for Full-Stack Cloud Native Security

Securing Container Workloads on AWS Bottlerocket

Threat Alert: Massive Cryptomining Campaign Abusing GitHub, Docker Hub, Travis CI & Circle CI

Deep Analysis of TeamTNT Techniques Using Container Images to Attack

How GitLab Innovates DevOps Security Using Aqua Trivy

Uncover Malware Payload Executions Automatically with Tracee

Threat Alert: An Attack Against a Docker API Leads To Hidden Cryptominers

Using Trivy to Discover Vulnerabilities in VS Code Projects

Threat Alert: Attacker Building Malicious Images Directly on Your Host

Role-Based Access Control in Modern Cloud Native Security

Risk-Based Vulnerability Management in Container Images

Starboard: The Kubernetes-Native Toolkit for Unifying Security

Visualize and Prioritize Risks in Kubernetes with Aqua Risk Explorer

Aqua Partners with GCP to Secure Windows Containers on GKE

Dynamic Threat Analysis for Container Images: Uncovering Hidden Risks

Threat Alert: Kinsing Malware Attacks Targeting Container Environments

Blocking Attacks in Runtime with Drift Prevention

Trivy Image Vulnerability Scanner Now Under Apache 2.0 License

Scanning Image Layers, Prometheus, and Harbor Integrations

Aqua CSP Globally Whitelisted for ARO: Red Hat OpenShift on Azure

Kube-Query: A Simpler Way to Query Your Kubernetes Clusters

Announcing General Availability of CloudSploit by Aqua for GCP

Threat Alert: Exploiting Open Docker Daemons for DDoS Attacks

A Deep Dive into eBPF:
The Technology that Powers Tracee

What You Need to Know About AWS Lambda Functions Risk Mitigation

Cloud Native Security Best Practices: Using Kubernetes Admission Controller for Image Assurance

A Brief History of Containers: From the 1970s Till Now

Cloud Native Best Practices: Security Policies in CI/CD Pipelines

Pluggable Image Vulnerability Scanners for Harbor

Aqua Integrates with AWS Security Hub: Closing the Gap on Cloud Native Security

DevSecOps with Trivy and GitHub Actions

Tracee: Tracing Containers with eBPF

Performance-Optimized Runtime Protection for Serverless Functions
with Aqua

Optimized Logging for Container Workloads Using AWS FireLens

Cloud Native Security Best Practices: Vulnerability Management

Cloud VM Security with Aqua CSP

Native Runtime Protection for
Pivotal Cloud Foundry

CVE-2019-14287 sudo Vulnerability Allows Bypass of User Restrictions

Securing Hybrid Cloud Workloads on Google Anthos

Kubernetes RBAC: Asking for Forgiveness or Getting Permission

DNS Spoofing on Kubernetes Clusters

Kubernetes Pod Escape
Using Log Mounts

Aqua Operator: Automating Security for Kubernetes

Knative: The Serverless Environment for Kubernetes Fans

Read on the Aqua Blog

Security Configuration Benchmarks for Kubernetes

Istio Security: Zero-Trust Networking

Serverless Security: The Importance of FaaS Risk Assessment

Istio: The Enterprise Upgrade Path to Microservices

Severe Privilege Escalation Vulnerability in Kubernetes (CVE-2018-1002105)

Protecting AWS Fargate Containers at Runtime

Kube-Bench: An OSS Tool for Running Kubernetes CIS Benchmark Tests

Streamline Image
Vulnerability Management for
OpenShift Image Streams

Kube-hunter: An Open Source Tool for Kubernetes Penetration Testing

Aqua Integrates with Google’s Cloud Security Command Center

Aqua MicroScanner:
Free Image Vulnerability Scanning Plugin for Jenkins

Kubernetes Security Deep-Dive

Aqua on OpenShift
Level-Up Your Container Security Game - Part I

Securing Serverless: Persistent Security for Ephemeral Environments

How to Secure Amazon ECS Workloads On Demand

MicroScanner: Free Image Vulnerability Scanner for Developers

Grafeas and Image Vulnerability Scanning

Kubernetes 1.10: What’s New in Security

Governance and Control for The Container Supply Chain Using Aqua Security and Google Grafeas

Managing Secrets in Docker Containers

Continue Reading

Securing Containers on OpenShift

Docker Networking and Kubernetes Networking Tools

Need to secure enterprise workloads?

Aqua Cloud Native Application Protection Platform (CNAPP)

Go cloud native with the experts!

Get Demo

Aqua Security is the pioneer in securing containerized cloud native applications from development to production. Aqua's full lifecycle solution prevents attacks by enforcing pre-deployment hygiene and mitigates attacks in real time in production, reducing mean time to repair and overall business risk. The Aqua Platform, a Cloud Native Application Protection Platform (CNAPP), integrates security from Code to Cloud, combining the power of agent and agentless technology into a single solution. With enterprise scale that doesn’t slow development pipelines, Aqua secures your future in the cloud. Founded in 2015, Aqua is headquartered in Boston, MA and Ramat Gan, IL protecting over 500 of the world’s largest enterprises.

Read Aqua Security reviews on G2

Use Cases

Environments

Partners

Products

Get Started

Copyright © 2025 Aqua Security Software Ltd. Privacy Policy | Terms of Use | Cookie Policy | |