EPScan

"EPScan: Automated Detection of Excessive RBAC Permissions in Kubernetes Applications"

Get started (WIP)

Install uv
Prepare environment
```
echo "{YOUR_OPENAPI_KEY}" > openai.key
```

Prepare project folder

mkdir project
mkdir project/app1
# Put app config to `project/app1/conf`
# Clone app repo to `project/app1/source/{repo_name}`

Run EPScan
```
uv run ep_scan.py ./project
```

Publication

If you find this project useful for your research, please consider citing our paper:

EPScan: Automated Detection of Excessive RBAC Permissions in Kubernetes Applications

Yue Gu, Xin Tan, Yuan Zhang, Siyan Gao, Min Yang

In IEEE Symposium on Security and Privacy (SP), 2025.

DOI: 10.1109/SP61157.2025.00011

@inproceedings{gu2024epscan,
  title={EPScan: Automated Detection of Excessive RBAC Permissions in Kubernetes Applications},
  author={Gu, Yue and Tan, Xin and Zhang, Yuan and Gao, Siyan and Yang, Min},
  booktitle={2025 IEEE Symposium on Security and Privacy (SP)},
  pages={11--11},
  year={2024},
  organization={IEEE Computer Society}
}

TODOs

Documentation
Translation

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
analyse		analyse
modules		modules
tests		tests
utils		utils
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
ep_scan.py		ep_scan.py
pyproject.toml		pyproject.toml
uv.lock		uv.lock

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

EPScan

Get started (WIP)

Publication

TODOs

About

Uh oh!

Releases

Packages

Uh oh!

Languages

License

seclab-fudan/EPScan

Folders and files

Latest commit

History

Repository files navigation

EPScan

Get started (WIP)

Publication

TODOs

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages