Alternatives and similar repositories for Flow:

Users that are interested in Flow are comparing it to the libraries listed below

• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆85Updated 2 weeks ago
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆73Updated last year
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated 9 months ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆54Updated 3 months ago
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆140Updated 4 months ago
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆168Updated 2 weeks ago
• shivamsaraswat / SeCoRA
  Secure Code Review AI Agent (SeCoRA) - AI SAST
  ☆48Updated 3 months ago
• gabrielsoltz / metahub
  MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.
  ☆171Updated this week
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆91Updated 3 months ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆102Updated last week
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆180Updated 3 weeks ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆143Updated 10 months ago
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆125Updated 6 months ago
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆39Updated this week
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆148Updated 5 months ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆107Updated 5 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆142Updated 2 weeks ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 9 months ago
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated last month
• Santiago-Labs / go-ocsf
  ☆66Updated this week
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆39Updated 8 months ago
• RyanJarv / roles
  Unauthenticated enumeration of AWS IAM Roles.
  ☆25Updated 4 months ago
• cloud-copilot / iam-simulate
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆77Updated this week
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆21Updated 3 weeks ago
• dark-warlord14 / CVENotifier
  Customized CVE FEED Notifier
  ☆113Updated 2 weeks ago
• welldone-cloud / aws-summarize-account-activity
  Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well a…
  ☆161Updated 3 weeks ago
• tenable / hidden-services-revealer
  ☆35Updated 9 months ago
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆79Updated last year