Viewing Trivy Operator Metrics in Grafana -- FULL TUTORIAL

preview_player
Показать описание
In this tutorial, we are going to show you how you can view metrics from your Trivy Operator Security Report directly in Grafana and Prometheus.

This tutorial walks you through
- Setting up the Trivy Operator Helm Chart with ServiceMonitors enabled
- Installing the kub-prometheus-stack Helm Chart to access Prometheus and Grafana
- Querying metrics through Prometheus
- Using one of the Trivy Operator Dashboard in Grafana
- Showing a theoretical diagram of how it all works together

Resources 📚

⭐Give our projects a star on GitHub⭐

⏱️Timestamp⏱️
00:00 - Intro
02:28 - Installing the kube-prometheus-stack Helm Chart
06.05 - Installing the Trivy Operator Helm Chart
08:49 - Viewing the Trivy Operator metrics on the service
10:05 - Querying metrics through PromQL in Prometheus
11:19 - Setting up the Trivy Operator Dashbaord in Grafana
13:50 - Diagram how it all works together
20:34 - Outro
  1. Aqua Security Open Source
  2. DevSecOps
  3. Kubernetes
  4. cluster
  5. docker
  6. container
Рекомендации по теме
Viewing Trivy Operator 0:21:21

Viewing Trivy Operator Metrics in Grafana -- FULL TUTORIAL

Access Trivy Security 0:06:49

Access Trivy Security Metrics in Prometheus

Full tutorial: Continous 0:21:30

Full tutorial: Continous in-cluster security scanning with the Trivy Operator

Kubernetes security scanning 0:16:47

Kubernetes security scanning with Trivy CLI and Trivy Operator

Installing the Trivy 0:13:24

Installing the Trivy Operator through Terraform or ArgoCD

Misconfiguration Scanning with 0:10:01

Misconfiguration Scanning with Trivy -- Ep. 2 Trivy Overview

Trivy CLI Compliance 0:05:39

Trivy CLI Compliance Scans NSA and CIS

Misconfiguration scans on 0:05:02

Misconfiguration scans on your container images with Trivy

Continuous CVE Scanning 0:15:50

Continuous CVE Scanning with Trivy Operator - Vitaliy Schreibmann

Using Lens or 0:09:23

Using Lens or K9s with the Trivy Operator

A 10 Step 0:15:42

A 10 Step Guide for Integrating Security Metrics Into Your Observability Stack - Anais Urlichs

Generating scan reports 0:11:25

Generating scan reports with Trivy

Trivy Security Scanner 0:12:32

Trivy Security Scanner -- Extension Ecosystem full overview

Trivy demo- container 0:04:42

Trivy demo- container vulnerability scanner

Trivy Resources Overview 0:14:48

Trivy Resources Overview -- Where to get started

All-In-One Open Source 0:20:40

All-In-One Open Source Security Scanner | Docker Image Analysis with Trivy

Docker CIS Benchmark 0:04:06

Docker CIS Benchmark Scans with Trivy

Full Tutorial: AlertManager 0:42:07

Full Tutorial: AlertManager Set up and PrometheusRules

Trivy Vulnerability 0:42:05

Trivy Vulnerability Scanning

49. #EveryoneCanContribute Cafe: 1:05:00

49. #EveryoneCanContribute Cafe: Aqua Security and Open Source with Anaïs Urlichs

Scan your AWS 0:09:50

Scan your AWS Services for Security Issues with Trivy

Check for deprecated 0:10:10

Check for deprecated Kubernetes API with Trivy

Scanning private Git 0:09:14

Scanning private Git repositories with Trivy

Practical Kubernetes Monitoring 0:23:51

Practical Kubernetes Monitoring with Prometheus - Michael Friedrich, GitLab

Комментарии
Автор

I am following this tutorial, it's great. thanks

radrianm
Автор

Hi, great tutorial!
How can I also display all vulnerabilities (with CVE) for an image? (or just to filter all Critical Alerts for an image)

commanderpaladin
Автор

still works in new versions of trivy? Just tried and was unable do find the trivy in prometheus targets.

ThiagoG-fq
Автор

Hi 👋, I can see the metrics from K8s and in Grafana Dashboard but How can I check the detailed report in Trivy-operator. Is there a way to check this? because currently it just shows how many Critical/High/Medium bugs we have but not showing details like how we can check by using trivy command line.
How can I see a detailed reports in Trivy Operator?

aawaj-
Автор

I'm having issues with trivy ioperator in EKS... any ideas from anyone? auditconfig scan works. When I do kubectl get vulnerabilityresults i have no results. No matter what namespace I check. Works fine on a homelab in minikube.

andrewa
Автор

Last thing I swear -- Anyone found a better dashboard than this one? Knowing you have vulnerabilities is cool and all -- but how do i see CVE's with fixes?

andrewa