5GSEC / nimbusLinks
Intent driven security automation framework
☆26Updated 2 months ago
Alternatives and similar repositories for nimbus
Users that are interested in nimbus are comparing it to the libraries listed below
Sorting:
- Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…☆34Updated 5 months ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- KubeArmor cli tool aka kArmor☆42Updated this week
- Response Engine for managing threats in your Kubernetes☆173Updated 3 weeks ago
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆48Updated last week
- Administrative tooling for Falco☆111Updated last week
- sigstore the hard way!☆117Updated 2 months ago
- Find your favorite eBee☆74Updated 6 months ago
- A place for policy work group related proposals and prototypes.☆66Updated 5 months ago
- Falco plugins registry☆104Updated last week
- Generate a variety of suspect actions that are detected by Falco rulesets☆110Updated 4 months ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated this week
- Kubernetes Operator for Falco☆13Updated this week
- Tutorials about Cilium and SPIRE integration☆30Updated 3 years ago
- Kubernetes audit logging, when you don't control the control plane☆86Updated this week
- Curated list of SPIFFE and SPIRE resources☆60Updated 3 years ago
- A tool for in-depth analysis of container checkpoints☆122Updated 3 weeks ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- sigstore installation walkthrough, local☆63Updated last year
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆56Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆101Updated this week
- AI-generated remediations for Falco audit events☆72Updated 2 years ago
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆127Updated 2 weeks ago
- ☆74Updated 5 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 9 months ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- Goby CLI eBPF Project Generator☆33Updated 8 months ago
- Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA☆69Updated last year
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated last month
- This repo contains various examples to learn, explore, and experiment with eBPF.☆62Updated last week