Please enable JavaScript.
Coggle requires JavaScript to display documents.
Defender for Container - Coggle Diagram
Defender for Container
Agentless discovery for k8s
update every 6 hrs
Defender agent
update every hour
Deploy the Defender agent
ACR
Microsoft Defender Vulnerability Management (MDVM)
Scanning OS packages
Language specific packages
Exploitability information
Reporting
Image scanning in Azure Private Link
scanning on adding, rescan every 24hrs
[Preview] images pulled in the last 30 days
images pushed in the last 90 days
images currently running on the Kubernetes clusters monitored by Defender for Cloud
Delete in 1hr ~3 days
k8s data plane hardening
Recommendations
Outbound network and FQDN rules for Azure Kubernetes Service (AKS) clusters
k8s alerts
Defender for Containers support
ARG
ARG
https://learn.microsoft.com/en-us/azure/aks/cis-kubernetes#kubernetes-cis-benchmark