gke audit log forensic analyzer — free browser tool | fatcousin

drop gke audit log · parse api + admin events

input

drop GKE cloud audit log json/jsonl/csv

logging sink export · container.googleapis.com admin activity

Select file

flags workload identity anomalies · master authorized networks changes · binary authorization bypass · admin bursts

limits

heuristic screener · export schema varies by sink — filters GKE/container API activity only · not definitive proof

status

>ready