CycodeLabs / GitOpsSecurityChampionLinks
Collection of security best practices to secure GitOps workflows
☆26Updated 11 months ago
Alternatives and similar repositories for GitOpsSecurityChampion
Users that are interested in GitOpsSecurityChampion are comparing it to the libraries listed below
Sorting:
- Validate the isolation posture of your container environment.☆303Updated 2 months ago
- Chaos snake for Kubernetes. Chaos engineering combined with a classic snake game.☆179Updated 3 weeks ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆447Updated 3 weeks ago
- Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD☆42Updated 3 weeks ago
- Tool for building Kubernetes attack paths☆921Updated last week
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆224Updated 2 weeks ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆351Updated 7 months ago
- Response Engine for managing threats in your Kubernetes☆180Updated this week
- 🧰 Multi Tool Kubernetes Pentest Image☆245Updated 2 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- #supply #chain #attack #detection☆564Updated last week
- Script to score images against CHPs criteria☆34Updated last week
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆93Updated last month
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆366Updated 3 months ago
- A collection of manifests that will create pods with elevated privileges.☆651Updated 3 years ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆816Updated 7 months ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆190Updated last month
- A collection of tools to improve your containerized apps security posture☆149Updated last year
- GitHub Actions Pipeline Enumeration and Attack Tool☆712Updated last month
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆171Updated last week
- KBOM - Kubernetes Bill of Materials☆321Updated 3 months ago
- A CLI tool to sign and verify artifacts☆439Updated last week
- An open source, cloud-native security to protect everything from build to runtime☆323Updated this week
- Kubernetes focused container assessment and context discovery tool for penetration testing☆467Updated last year
- BadRobot - Operator Security Audit Tool☆223Updated 3 weeks ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆554Updated last week
- Type safe K8s middleware for humans☆194Updated this week
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 9 months ago
- wake and sleep Kubernetes deployments on a schedule☆362Updated 9 months ago
- The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.☆240Updated 2 years ago