TNG / cumulus

Related projects: ⓘ

• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 weeks ago
• ocurity / dracon
  Security scanning & static analysis tool - forked and rewritten from @thought-machine/dracon
  ☆70Updated this week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆165Updated 7 months ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆61Updated last year
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆108Updated 3 weeks ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆64Updated this week
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆92Updated last year
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆202Updated this week
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆24Updated 3 years ago
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆63Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆248Updated last year
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆76Updated this week
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆42Updated 6 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆56Updated last year
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆214Updated this week
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆71Updated last year
• openvex / spec
  OpenVEX Specification
  ☆125Updated 2 months ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆76Updated 3 months ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆41Updated 3 weeks ago
• buildsec / frsca
  ☆225Updated this week
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆123Updated 7 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆64Updated 9 months ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆109Updated last week
• chainguard-dev / justtrustme
  ☆51Updated 6 months ago
• raesene / container-security-site
  ☆90Updated 4 months ago
• cloud-native-security-controls / controls-catalog
  ☆16Updated 4 months ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆29Updated 5 months ago
• SBOMit / specification
  ☆56Updated 2 months ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆68Updated last year
• nscuro / dtapac
  Audit Dependency-Track findings and policy violations via policy as code
  ☆32Updated this week