kubernetes service account token abuse detector — free browser tool | fatcousin

drop k8s audit log · detect sa token usage from unexpected pods

input

drop kubernetes audit json/jsonl

apiserver audit with userAgent and sourceIPs

Select file

flags unusual token review userAgent · cross-namespace service account usage · per-file try/catch

limits

heuristic screener · audit schema varies by cluster version — field mapping is best-effort · not definitive proof

status

>ready