Alternatives and similar repositories for dd-import

Users that are interested in dd-import are comparing it to the libraries listed below

• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated 2 weeks ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆108Updated 2 years ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆100Updated last month
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆79Updated 2 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆68Updated 7 months ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆131Updated 2 years ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆178Updated last month
• SecObserve / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆202Updated last week
• smithy-security / smithy
  The security workflow engine!
  ☆135Updated 2 months ago
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆41Updated last month
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆305Updated this week
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆23Updated 5 years ago
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆557Updated this week
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆95Updated 6 months ago
• snyk-tech-services / snyk-scm-contributors-count
  Count distinct contributor of Snyk watched repos across several SCM
  ☆32Updated last week
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆251Updated 4 months ago
• banzaicloud / dast-operator
  Dynamic Application and API Security Testing
  ☆194Updated 2 years ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆354Updated 2 weeks ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆47Updated 3 years ago
• DefectDojo / sample-scan-files
  Sample scan files for testing DefectDojo imports
  ☆85Updated 5 months ago
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆155Updated last year
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆86Updated last year
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆110Updated last year
• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆596Updated 9 months ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆80Updated last month
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆90Updated 3 months ago
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆56Updated 3 months ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆114Updated last week