Alternatives and similar repositories for awesome-cloud-native-security

Users that are interested in awesome-cloud-native-security are comparing it to the libraries listed below

• Metarget / k0otkit
  k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
  ☆300Updated 4 years ago
• ctrsploit / ctrsploit
  A penetration toolkit for container environment
  ☆116Updated this week
• YDCloudSecurity / cloud-security-guides
  ☆177Updated 2 years ago
• Hardw01f / Vulnerability-goapp
  Web application build Golang with Vulnerability
  ☆252Updated 3 years ago
• cloud-native-security-news / cloud-native-security-news
  Cloud Native Security News
  ☆64Updated 11 months ago
• HXSecurity / TerraformGoat
  TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
  ☆620Updated 3 years ago
• API-Security / APISandbox
  Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
  ☆416Updated 3 years ago
• antgroup / CloudRec
  CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of…
  ☆173Updated 2 weeks ago
• Metarget / metarget
  Metarget is a framework providing automatic constructions of vulnerable infrastructures.
  ☆1,352Updated 8 months ago
• twosmi1e / Static-Analysis-and-Automated-Code-Audit
  静态分析及代码审计自动化相关资料收集
  ☆298Updated 3 years ago
• coco413 / SecMind
  安全导图
  ☆261Updated last year
• chaitin / libveinmind
  一个由长亭自研，直观而可扩展的容器安全 SDK
  ☆121Updated 2 years ago
• 1135 / notes
  Security & Development
  ☆269Updated 2 years ago
• yeahx / KubeAPI-Inspector
  A tool specifically designed for Kubernetes environments aims to efficiently and automatically discover hidden vulnerable APIs within clu…
  ☆102Updated 7 months ago
• ASTTeam / SAST
  《深入理解SAST静态应用安全测试》Static Application Security Testing.
  ☆374Updated 2 months ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆303Updated last year
• ssst0n3 / docker_archive
  Provide many versions of images of docker and docker's components
  ☆19Updated this week
• Metarget / cloud-native-security-book
  《云原生安全：攻防实践与体系构建》资料仓库
  ☆777Updated 2 years ago
• alipay / ant-application-security-testing-benchmark
  xAST评价体系，让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
  ☆445Updated last week
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆175Updated 2 years ago
• LyleMi / papers
  Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
  ☆375Updated last year
• ATNX / javaweb-rasp
  ☆38Updated 4 years ago
• Feysh-Group / corax-community
  Corax for Java: A general static analysis framework for java code checking.
  ☆253Updated last year
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆99Updated 5 years ago
• tabbysable / POC-2020-8558
  Information about Kubernetes CVE-2020-8558, including proof of concept exploit.
  ☆42Updated 5 years ago
• Firebasky / CodeqlLearn
  记录学习codeql的过程
  ☆392Updated 2 years ago
• brant-ruan / awesome-container-escape
  collections of container escape techniques 🐿
  ☆73Updated 4 years ago
• XDU-SysSec / ExcessivePermissionAttack
  Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
  ☆20Updated last year
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆69Updated 2 months ago
• JDArmy / RTASS
  红蓝对抗量化评估系统（Red Team Assessment Scoring System）
  ☆212Updated 2 years ago