Alternatives and similar repositories for SecObserve

Users that are interested in SecObserve are comparing it to the libraries listed below

• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆287Updated 2 weeks ago
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆43Updated 9 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆82Updated last week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆177Updated 3 months ago
• interlynk-io / sbomqs
  SBOM Assess - Evaluate SBOM quality and compliance
  ☆216Updated this week
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆236Updated 2 months ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆149Updated this week
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆173Updated 2 months ago
• opengrep / opengrep-rules
  ☆72Updated 5 months ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• DependencyTrack / helm-charts
  Helm Charts for Dependency-Track
  ☆41Updated 3 weeks ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆110Updated last week
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆135Updated last year
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated 2 years ago
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆79Updated this week
• Mixeway / Flow
  Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
  ☆51Updated this week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆234Updated last week
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆105Updated 6 months ago
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆221Updated this week
• openvex / spec
  OpenVEX Specification
  ☆152Updated last month
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 10 months ago
• MediaMarktSaturn / technolinator
  GitHub app for SBOM creation using cdxgen and upload to Dependency-Track
  ☆19Updated last week
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated last week
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 2 months ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆114Updated last month
• mchmarny / s3cme
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆104Updated last year
• nscuro / dtapac
  Audit Dependency-Track findings and policy violations via policy as code
  ☆33Updated last week
• smithy-security / smithy
  The security workflow engine!
  ☆116Updated this week
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆202Updated this week