vicenteherrera · March 23, 2020 18:19
diff --git a/ingress_object_without_tls_certificate_created.yaml b/ingress_object_without_tls_certificate_created.yaml
 - rule: Ingress Object without TLS Certificate Created
  desc: Detect any attempt to create an ingress without TLS certification.
  condition: >
    (kactivity and kcreate and ingress and response_successful and not ingress_tls)
  output: >
    K8s Ingress Without TLS Cert Created (user=%ka.user.name ingress=%ka.target.name
    namespace=%ka.target.namespace)
  source: k8s_audit
  priority: WARNING
  tags: [k8s, network, PCI, PCI_DSS_4.0]
	- rule: Ingress Object without TLS Certificate Created
	desc: Detect any attempt to create an ingress without TLS certification.
	condition: >
	(kactivity and kcreate and ingress and response_successful and not ingress_tls)
	output: >
	K8s Ingress Without TLS Cert Created (user=%ka.user.name ingress=%ka.target.name
	namespace=%ka.target.namespace)
	source: k8s_audit
	priority: WARNING
	tags: [k8s, network, PCI, PCI_DSS_4.0]