5GSEC / nimbus

Related projects ⓘ

Alternatives and complementary repositories for nimbus

• kubearmor / policy-templates
  Community curated list of System and Network policy templates for the KubeArmor and Cilium
  ☆41Updated 3 weeks ago
• kubearmor / kubearmor-client
  KubeArmor cli tool aka kArmor
  ☆36Updated 2 weeks ago
• accuknox / discovery-engine
  Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…
  ☆31Updated last year
• kubearmor / k8tls
  k8tls (pronounced cattles), to assess server port security by detecting its TLS and certificates configuration.
  ☆19Updated this week
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆35Updated 7 months ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• raesene / eathar
  ☆24Updated 6 months ago
• kubescape / cel-admission-library
  This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…
  ☆48Updated last week
• slashben / beat-ac-cosign-verifier
  This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
  ☆12Updated last year
• checkpoint-restore / checkpointctl
  A tool for in-depth analysis of container checkpoints
  ☆100Updated this week
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆110Updated 6 months ago
• kubescape / sneeffer
  Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…
  ☆26Updated last year
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆65Updated this week
• isovalent / ebeedex
  Find your favorite eBee
  ☆54Updated this week
• kubestellar / kubeflex
  A flexible and scalable platform for running Kubernetes control plane APIs.
  ☆48Updated 3 weeks ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆131Updated this week
• wolfi-dev / wolfictl
  A CLI used to work with the Wolfi OSS project
  ☆57Updated this week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆38Updated 8 months ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆14Updated last month
• spiffe / helm-charts-hardened
  ☆20Updated this week
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated this week
• Dentrax / falco-gpt
  AI-generated remediations for Falco audit events
  ☆69Updated last year
• kubernetes-sigs / wg-policy-prototypes
  A place for policy work group related proposals and prototypes.
  ☆64Updated last month
• chainguard-dev / policy-catalog
  ☆19Updated 3 months ago
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆73Updated this week
• openshift / ingress-node-firewall
  Ingress node firewall implements Kubernetes operator to provision stateless ingress node level firewall rules, stateless ingress node fir…
  ☆50Updated last week
• falcosecurity / event-generator
  Generate a variety of suspect actions that are detected by Falco rulesets
  ☆94Updated this week
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆121Updated this week
• philips-labs / spiffe-vault
  Integrates Spiffe and Vault to have secretless authentication
  ☆85Updated this week
• nyrahul / ebpf-guide
  Ebpf faqs, samples, tooling
  ☆44Updated 3 years ago