Kubesim allows you to completely simulate a real Kubernetes cluster in an isolated environment. By virtualizing all of the infastructure that Kubernetes clusters interact with to operate, kubesim can recreate real-world operating conditions, so you can see how your cluster and applications respond in circumstances that would be difficult or expensive to test on live infastructure.
Want to see how your app handles scaling to 1000 nodes? What would happen in an AZ outage, or if an entire region like us-east-1 were to fail? Kubesim can do all of that and more.
Kubesim for Learning
Kubernetes administration is one of the most in-demand technical skills today, and the best way to learn Kubernetes is by working with real clusters in production conditions. Existing solutions simply containerize a Kubernetes cluster, which doesn't accurately simulate real-world deployments. Kubesim goes beyond this by simulating external network services (DNS), cloud provider support services (AWS, GCP, Azure), multiple control plane and worker nodes, and the underlying network topologies (AZ, region, Internet). All of this creates a high-fidelity learning environment that accelerates practical Kubernetes skill development.
Kubesim for Testing
Kubesim makes it easy to test software that runs on or interacts with a Kubernetes cluster, without the effort and expense of testing on live infrastructure. Developers can use kubesim locally to run integration tests, or as part of their CI/CD pipeline. Kubesim can change the version or distribution of Kubernetes in the simulated enviornment, making it easy to do regression testing against a large number of compatability targets. And with kubesim capture, users can securely take a snapshot of their live Kubernetes environment and share it with a vendor to help recreate complex infrastructure issues during troubleshooting.
Kubesim for Security
Kubernetes security is a complex but essential skill for every organization operating clusters. Kubesim allows security teams to validate that clusters and apps are hardened against a wide range of configuration and operational vulnerabilities before deployment, including NIST SP 800-53 Rev 5 controls. Teams can define outcome-oriented security policies covering network reachability, service account privilege and secrets management. These policies can then be evaluated in the context of a fully configured and operating Kubernetes cluster to validate compliance. When a cluster is out of compliance, kubesim provides detailed information on why and how to fix it, speeding up remediation and stopping vulnerabilities before they can be exploited.