DataDog/workload-security-evaluator external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DataDog/workload-security-evaluator

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/workload-security-evaluator)

Close

DataDog / workload-security-evaluatorView on GitHubMore

• External links
• Readme badge

## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.

☆37Oct 17, 2024Updated last year

Alternatives and similar repositories for workload-security-evaluator

Users that are interested in workload-security-evaluator are comparing it to the libraries listed below

• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• awslabs / k8s-network-policy-migrator

  View on GitHub
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆32Aug 29, 2023Updated 2 years ago
• orcasecurity-research / kte

  View on GitHub
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Aug 29, 2024Updated last year
• DataDog / managed-kubernetes-auditing-toolkit

  View on GitHub
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆370Updated this week
• loomhq / eks-ng-ami-updater

  View on GitHub
  EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.
  ☆28Mar 8, 2026Updated 2 weeks ago
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated last year
• raesene / teisteanas

  View on GitHub
  ☆30May 12, 2025Updated 10 months ago
• latiotech / insecure-kubernetes-deployments

  View on GitHub
  A full insecure kubernetes application for testing security tools
  ☆94Oct 23, 2025Updated 4 months ago
• KatTraxler / gcpdocs

  View on GitHub
  Repository to archive GCP Documentation for local use
  ☆16Feb 11, 2025Updated last year
• uchi-mata / dostainer

  View on GitHub
  ☆29Jan 31, 2025Updated last year
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆290Feb 5, 2024Updated 2 years ago
• silascutler / dockerhoneypot-logs

  View on GitHub
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Sep 30, 2024Updated last year
• Permiso-io-tools / capiche

  View on GitHub
  ☆18Feb 2, 2026Updated last month
• vectra-ai-research / derf

  View on GitHub
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Jan 12, 2024Updated 2 years ago
• aws-samples / infrastructure-assessment-iac-automation

  View on GitHub
  ☆12Oct 17, 2023Updated 2 years ago
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• google / localtoast

  View on GitHub
  ☆117Feb 11, 2026Updated last month
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Jan 2, 2025Updated last year
• primeharbor / pht-awsbackup-management

  View on GitHub
  Scripts and IaC to create a ransomware resilient AWS Backup System
  ☆16Sep 5, 2023Updated 2 years ago
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆26Jan 6, 2026Updated 2 months ago
• box / kube-exec-controller

  View on GitHub
  An admission controller service and kubectl plugin to handle container drift in K8s clusters
  ☆125Dec 2, 2021Updated 4 years ago
• Azure / azure-iac-workshop-content

  View on GitHub
  Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…
  ☆23Jun 14, 2023Updated 2 years ago
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆113Jan 2, 2025Updated last year
• PaloAltoNetworks / prisma-cloud-bootcamps

  View on GitHub
  ☆10Feb 14, 2024Updated 2 years ago
• PaloAltoNetworks / rbac-police

  View on GitHub
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆351Mar 21, 2025Updated last year
• raesene / k8s_ssrf_portscanner

  View on GitHub
  ☆30Jan 12, 2023Updated 3 years ago
• jdyke / gcp_iam_update_bot

  View on GitHub
  Tweets when new GCP IAM updates are found
  ☆13Mar 14, 2026Updated last week
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆26Sep 7, 2025Updated 6 months ago
• BreakingMhet / honeyzure

  View on GitHub
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆17Jun 11, 2024Updated last year
• kston83 / cvss-te

  View on GitHub
  Improves vulnerability prioritization by enhancing CVSS scores with exploit intelligence. Combines data from CISA KEV, EPSS, Metasploit, …
  ☆14Updated this week
• carta / krang

  View on GitHub
  Knowledge Report Alert & Normalization Generator
  ☆26Feb 11, 2026Updated last month
• ofirc / k8s-sniff-https

  View on GitHub
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆75Apr 14, 2025Updated 11 months ago
• PaloAltoNetworks / pc-python-integration

  View on GitHub
  Python3 API toolkit for Prisma Cloud APIs
  ☆23Mar 7, 2025Updated last year
• raphabot / conformity-template-scanner-pipeline

  View on GitHub
  conformity-template-scanner-pipeline
  ☆13Mar 15, 2024Updated 2 years ago
• micromize-dev / micromize

  View on GitHub
  micromize is a security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveragin…
  ☆44Mar 9, 2026Updated last week
• chainguard-dev / bomshell

  View on GitHub
  An SBOM query language and associated utilities
  ☆55Jan 22, 2024Updated 2 years ago
• DataDog / whoAMI-scanner

  View on GitHub
  Scan your account for the use of untrusted AMIs
  ☆32Updated this week
• trufflesecurity / how-to-rotate

  View on GitHub
  An open-source collection of API key rotation tutorials.
  ☆78Feb 9, 2026Updated last month