creator/Anthropic-Cybersecurity-Skills
1
0
Fork 0
mirror of https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git synced 2026-06-16 16:03:17 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5f3fa32486ea335db802d68fe2147fa2da69583
Anthropic-Cybersecurity-Skills/skills/implementing-network-policies-for-kubernetes/references/standards.md
T

735 B
Raw Blame History

Standards Reference - Kubernetes Network Policies

CIS Kubernetes Benchmark v1.8 - Section 5.3

  • 5.3.1: Ensure CNI supports Network Policies
  • 5.3.2: Ensure default deny NetworkPolicy for all namespaces

NSA/CISA Kubernetes Hardening Guide

  • Implement network segmentation between namespaces
  • Apply default-deny network policies
  • Restrict pod-to-pod communication to required paths only
  • Block access to cloud metadata endpoints

MITRE ATT&CK Mitigations

Technique Mitigation via Network Policy
T1046 - Network Service Scanning Limit reachable services
T1021 - Remote Services Block lateral movement
T1552 - Credentials from IMDS Block 169.254.169.254
Reference in New Issue View Git Blame Copy Permalink