CycodeLabs / GitOpsSecurityChampionLinks
Collection of security best practices to secure GitOps workflows
☆25Updated 8 months ago
Alternatives and similar repositories for GitOpsSecurityChampion
Users that are interested in GitOpsSecurityChampion are comparing it to the libraries listed below
Sorting:
- Tool for building Kubernetes attack paths☆897Updated 3 weeks ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆815Updated 4 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆534Updated 5 months ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆357Updated 2 weeks ago
- Validate the isolation posture of your container environment.☆296Updated last week
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆441Updated this week
- OWASP Foundation Web Respository☆589Updated last year
- GitHub Actions Pipeline Enumeration and Attack Tool☆693Updated last month
- 🧰 Multi Tool Kubernetes Pentest Image☆243Updated 3 months ago
- Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD☆41Updated 2 months ago
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆478Updated last month
- A curated list of resources about detecting threats and defending Kubernetes systems.☆389Updated last year
- Response Engine for managing threats in your Kubernetes☆168Updated last week
- 🧵 CLI tool for directly patching container images!☆1,388Updated last week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆217Updated 2 weeks ago
- A collection of manifests that will create pods with elevated privileges.☆643Updated 3 years ago
- A tool for preventing the installation of malicious npm and PyPI packages☆155Updated this week
- Chaos snake for Kubernetes. Chaos engineering combined with a classic snake game.☆178Updated 3 weeks ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆286Updated 11 months ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆347Updated 4 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆296Updated 2 weeks ago
- Kubernetes focused container assessment and context discovery tool for penetration testing☆463Updated last year
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 6 months ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆182Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆864Updated this week
- boostsecurityio/poutine☆309Updated 2 weeks ago
- Reference security architecture for AI applications☆13Updated 4 months ago
- Awesome secure by default libraries to help you eliminate bug classes!☆698Updated 3 months ago
- Demos for our research on Github actions script injection vulnerabilities☆13Updated last year