Alternatives and similar repositories for nimbus

Users that are interested in nimbus are comparing it to the libraries listed below

• accuknox / discovery-engine
  Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…
  ☆33Updated last week
• kubearmor / policy-templates
  Community curated list of System and Network policy templates for the KubeArmor and Cilium
  ☆44Updated 2 months ago
• kubearmor / kubearmor-client
  KubeArmor cli tool aka kArmor
  ☆43Updated this week
• kubescape / cel-admission-library
  This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…
  ☆55Updated 3 weeks ago
• isovalent / ebeedex
  Find your favorite eBee
  ☆68Updated last month
• k8sstormcenter / honeycluster
  Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)
  ☆44Updated last week
• kubernetes-sigs / wg-policy-prototypes
  A place for policy work group related proposals and prototypes.
  ☆67Updated last week
• accuknox / cilium-spire-tutorials
  Tutorials about Cilium and SPIRE integration
  ☆29Updated 3 years ago
• kubestellar / kubeflex
  A flexible and scalable platform for running Kubernetes control plane APIs.
  ☆63Updated last week
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆105Updated this week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆45Updated last year
• checkpoint-restore / checkpointctl
  A tool for in-depth analysis of container checkpoints
  ☆116Updated 3 weeks ago
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆111Updated last year
• kubernetes-sigs / tejolote
  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
  ☆62Updated last week
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated 3 weeks ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆38Updated last year
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆79Updated 2 weeks ago
• falcosecurity / falco-operator
  Kubernetes Operator for Falco
  ☆11Updated this week
• tstromberg / sigstore-the-local-way
  sigstore installation walkthrough, local
  ☆59Updated last year
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆82Updated last week
• elinesterov / awesome-spiffe-spire
  Curated list of SPIFFE and SPIRE resources
  ☆55Updated 2 years ago
• ossf / security-assessments
  ☆15Updated last month
• kyverno / reports-server
  Alternate reports storage in Kubernetes outside etcd
  ☆33Updated 2 months ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆46Updated last year
• chainguard-dev / policy-catalog
  ☆20Updated 10 months ago
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆97Updated last week
• slashben / beat-ac-cosign-verifier
  This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
  ☆12Updated 2 years ago
• bpfman / bpfman-operator
  Kubernetes operator for bpfman
  ☆24Updated this week
• quicsec / quicsec
  HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0…
  ☆74Updated last year
• ChaosInTheCRD / Dexter
  Trust Dexter to ensure that all your images are pinned by digest for better security
  ☆29Updated last year