MaibornWolff / SecObserve
SecObserve is an open source vulnerability management system for software development and cloud environments. It supports a variety of open source vulnerability scanners and integrates easily into CI/CD pipelines.
β95Updated this week
Related projects β
Alternatives and complementary repositories for SecObserve
- π§° Multi Tool Kubernetes Pentest Imageβ215Updated 2 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Geminiβ149Updated 8 months ago
- OWASP Kubernetes security and compliance tool [WIP]β104Updated last year
- A utility to (re-)import findings and language data into DefectDojoβ42Updated last month
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.β36Updated 10 months ago
- A full insecure kubernetes application for testing security toolsβ54Updated this week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently β¦β253Updated last week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflowsβ79Updated this week
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs andβ¦β140Updated this week
- AWS honey token managerβ84Updated 3 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIsβ69Updated 8 months ago
- Gram is Klarna's own threat model diagramming toolβ282Updated this week
- Security tool against dependency typosquatting attacksβ34Updated this week
- boostsecurityio/poutineβ231Updated this week
- Validate the isolation posture of your container environment.β152Updated this week
- A tool to uncover undocumented APIs from the AWS Console.β83Updated 2 months ago
- β168Updated last month
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.β169Updated 9 months ago
- BadRobot - Operator Security Audit Toolβ215Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β126Updated 9 months ago
- Generate datasets of cloud audit logs for common attacksβ184Updated 3 months ago
- β152Updated 2 months ago
- Customized CVE FEED Notifierβ107Updated 4 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKSβ34Updated 2 months ago
- Automatically detect potential vulnerabilities and analyze repository metrics to prioritize open source security research targetsβ181Updated this week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsβ104Updated 2 months ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and knβ¦β51Updated 11 months ago
- Identify hardcoded secrets in static structured text (version 2)β87Updated last week
- Tool for obfuscating and deobfuscating data.β64Updated 8 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"β66Updated 11 months ago