CycodeLabs / GitOpsSecurityChampionLinks
Collection of security best practices to secure GitOps workflows
☆28Updated last year
Alternatives and similar repositories for GitOpsSecurityChampion
Users that are interested in GitOpsSecurityChampion are comparing it to the libraries listed below
Sorting:
- Validate the isolation posture of your container environment.☆310Updated last month
- Response Engine for managing threats in your Kubernetes☆189Updated 2 months ago
- A collection of reusable Github Actions workflows.☆155Updated last week
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated 2 years ago
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆55Updated last month
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆449Updated 2 months ago
- Chaos snake for Kubernetes. Chaos engineering combined with a classic snake game.☆179Updated last month
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard) and Kubescape.☆62Updated last week
- Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD☆45Updated 3 months ago
- Log monitor for Rekor to verify immutability and monitor entries☆45Updated this week
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆98Updated 3 weeks ago
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆229Updated last week
- Helm Charts for running CrowdStrike Falcon with Kubernetes☆101Updated last week
- Kubernetes focused container assessment and context discovery tool for penetration testing☆475Updated 3 months ago
- A CLI tool to sign and verify artifacts☆460Updated 3 weeks ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆514Updated this week
- Throw a tag at it and it comes back with a checksum.☆154Updated this week
- Inspect certificate authorities in container images☆240Updated 2 months ago
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆217Updated this week
- Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.☆78Updated 2 years ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆195Updated 4 months ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆351Updated 10 months ago
- A collection of tools to improve your containerized apps security posture☆150Updated last year
- BadRobot - Operator Security Audit Tool☆223Updated this week
- The Compliance Validator☆183Updated this week
- Pipeline for patching CVEs in container images 💉📦☆20Updated last year
- Type safe K8s middleware for humans☆219Updated this week
- A menagerie of insecure and exploitable GitHub Actions workflows and action definitions☆17Updated 3 months ago
- #supply #chain #attack #detection☆640Updated last week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆369Updated 6 months ago