DataDog/workload-security-evaluator external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DataDog/workload-security-evaluator

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/workload-security-evaluator)

Close

DataDog / workload-security-evaluatorView on GitHubMore

• External links
• Readme badge

## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.

☆37Oct 17, 2024Updated last year

Alternatives and similar repositories for workload-security-evaluator

Users that are interested in workload-security-evaluator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• awslabs / k8s-network-policy-migrator

  View on GitHub
  K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…
  ☆32Aug 29, 2023Updated 2 years ago
• orcasecurity-research / kte

  View on GitHub
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Aug 29, 2024Updated last year
• DataDog / managed-kubernetes-auditing-toolkit

  View on GitHub
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆373Apr 1, 2026Updated last week
• loomhq / eks-ng-ami-updater

  View on GitHub
  EKS NG AMI Updater is an open source project that can be used to update kubernetes node group images.
  ☆28Updated this week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆79Mar 9, 2025Updated last year
• raesene / teisteanas

  View on GitHub
  ☆30May 12, 2025Updated 10 months ago
• latiotech / insecure-kubernetes-deployments

  View on GitHub
  A full insecure kubernetes application for testing security tools
  ☆94Mar 28, 2026Updated 2 weeks ago
• KatTraxler / gcpdocs

  View on GitHub
  Repository to archive GCP Documentation for local use
  ☆16Feb 11, 2025Updated last year
• uchi-mata / dostainer

  View on GitHub
  ☆29Jan 31, 2025Updated last year
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆291Feb 5, 2024Updated 2 years ago
• silascutler / dockerhoneypot-logs

  View on GitHub
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Sep 30, 2024Updated last year
• Permiso-io-tools / capiche

  View on GitHub
  ☆18Feb 2, 2026Updated 2 months ago
• vectra-ai-research / derf

  View on GitHub
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Jan 12, 2024Updated 2 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• google / localtoast

  View on GitHub
  ☆117Feb 11, 2026Updated 2 months ago
• primeharbor / pht-awsbackup-management

  View on GitHub
  Scripts and IaC to create a ransomware resilient AWS Backup System
  ☆16Sep 5, 2023Updated 2 years ago
• ReversecLabs / cloud-security-vm

  View on GitHub
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Jan 2, 2025Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Jan 6, 2026Updated 3 months ago
• box / kube-exec-controller

  View on GitHub
  An admission controller service and kubectl plugin to handle container drift in K8s clusters
  ☆126Dec 2, 2021Updated 4 years ago
• Azure / azure-iac-workshop-content

  View on GitHub
  Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…
  ☆24Jun 14, 2023Updated 2 years ago
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆115Jan 2, 2025Updated last year
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• PaloAltoNetworks / prisma-cloud-bootcamps

  View on GitHub
  ☆10Feb 14, 2024Updated 2 years ago
• PaloAltoNetworks / rbac-police

  View on GitHub
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆351Mar 21, 2025Updated last year
• raesene / k8s_ssrf_portscanner

  View on GitHub
  ☆30Jan 12, 2023Updated 3 years ago
• BreakingMhet / honeyzure

  View on GitHub
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆17Jun 11, 2024Updated last year
• jdyke / gcp_iam_update_bot

  View on GitHub
  Tweets when new GCP IAM updates are found
  ☆13Updated this week
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆26Sep 7, 2025Updated 7 months ago
• carta / krang

  View on GitHub
  Knowledge Report Alert & Normalization Generator
  ☆26Feb 11, 2026Updated 2 months ago
• ofirc / k8s-sniff-https

  View on GitHub
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆76Apr 14, 2025Updated 11 months ago
• common-fate / glide

  View on GitHub
  Automate permissions to your cloud and critical applications.
  ☆242Feb 20, 2024Updated 2 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• micromize-dev / micromize

  View on GitHub
  micromize is a security hardening tool designed to detect and break the post-exploit kill chain for containerized applications, leveragin…
  ☆44Mar 9, 2026Updated last month
• chainguard-dev / bomshell

  View on GitHub
  An SBOM query language and associated utilities
  ☆56Jan 22, 2024Updated 2 years ago
• DataDog / whoAMI-scanner

  View on GitHub
  Scan your account for the use of untrusted AMIs
  ☆32Updated this week
• PaloAltoNetworks / pc-python-integration

  View on GitHub
  Python3 API toolkit for Prisma Cloud APIs
  ☆24Mar 7, 2025Updated last year
• trufflesecurity / how-to-rotate

  View on GitHub
  An open-source collection of API key rotation tutorials.
  ☆80Feb 9, 2026Updated 2 months ago
• swisscom / splunk-addon-powershell

  View on GitHub
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Feb 1, 2021Updated 5 years ago
• clutchsecurity / federator

  View on GitHub
  Terraform templates for CI/CD to Cloud federation and Cloud2Cloud IAM federations
  ☆67Jan 4, 2026Updated 3 months ago