Alternatives and similar repositories for awesome-cloud-native-security

Users that are interested in awesome-cloud-native-security are comparing it to the libraries listed below

• Metarget / k0otkit
  k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
  ☆299Updated 4 years ago
• ctrsploit / ctrsploit
  A penetration toolkit for container environment
  ☆117Updated 2 weeks ago
• YDCloudSecurity / cloud-security-guides
  ☆176Updated 2 years ago
• API-Security / APISandbox
  Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
  ☆415Updated 3 years ago
• Hardw01f / Vulnerability-goapp
  Web application build Golang with Vulnerability
  ☆252Updated 2 years ago
• cloud-native-security-news / cloud-native-security-news
  Cloud Native Security News
  ☆65Updated 10 months ago
• HXSecurity / TerraformGoat
  TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
  ☆615Updated 2 years ago
• Metarget / metarget
  Metarget is a framework providing automatic constructions of vulnerable infrastructures.
  ☆1,340Updated 7 months ago
• XDU-SysSec / ExcessivePermissionAttack
  Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
  ☆20Updated last year
• antgroup / CloudRec
  CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…
  ☆171Updated this week
• 1135 / notes
  Security & Development
  ☆269Updated 2 years ago
• chaitin / libveinmind
  一个由长亭自研，直观而可扩展的容器安全 SDK
  ☆120Updated 2 years ago
• neargle / cloud_native_security_test_case
  🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]
  ☆81Updated 4 years ago
• ASTTeam / SAST
  《深入理解SAST静态应用安全测试》Static Application Security Testing.
  ☆368Updated last month
• Feysh-Group / corax-community
  Corax for Java: A general static analysis framework for java code checking.
  ☆253Updated 11 months ago
• coco413 / SecMind
  安全导图
  ☆259Updated last year
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆175Updated 2 years ago
• twosmi1e / Static-Analysis-and-Automated-Code-Audit
  静态分析及代码审计自动化相关资料收集
  ☆298Updated 3 years ago
• yeahx / KubeAPI-Inspector
  A tool specifically designed for Kubernetes environments aims to efficiently and automatically discover hidden vulnerable APIs within clu…
  ☆102Updated 6 months ago
• Firebasky / CodeqlLearn
  记录学习codeql的过程
  ☆388Updated 2 years ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆302Updated 11 months ago
• Metarget / cloud-native-security-book
  《云原生安全：攻防实践与体系构建》资料仓库
  ☆775Updated 2 years ago
• brant-ruan / awesome-container-escape
  collections of container escape techniques 🐿
  ☆73Updated 4 years ago
• ssst0n3 / docker_archive
  Provide many versions of images of docker and docker's components
  ☆18Updated this week
• alipay / ant-application-security-testing-benchmark
  xAST评价体系，让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
  ☆442Updated last week
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆68Updated last month
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆98Updated 5 years ago
• baidu-security / openrasp-iast
  IAST 灰盒扫描工具
  ☆448Updated 3 years ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆211Updated last year
• LyleMi / papers
  Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
  ☆375Updated last year