accuknox / discovery-engineLinks
Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data emitted from policy engines..
☆34Updated 5 months ago
Alternatives and similar repositories for discovery-engine
Users that are interested in discovery-engine are comparing it to the libraries listed below
Sorting:
- Intent driven security automation framework☆26Updated 2 months ago
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆48Updated 2 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- Falco plugins registry☆104Updated this week
- Find your favorite eBee☆74Updated 6 months ago
- Administrative tooling for Falco☆111Updated 2 weeks ago
- Response Engine for managing threats in your Kubernetes☆173Updated last month
- Generate a variety of suspect actions that are detected by Falco rulesets☆110Updated 5 months ago
- Tutorials about Cilium and SPIRE integration☆30Updated 3 years ago
- AI-generated remediations for Falco audit events☆72Updated 2 years ago
- KubeArmor cli tool aka kArmor☆43Updated this week
- A place for policy work group related proposals and prototypes.☆66Updated 5 months ago
- Manage admission policies in your Kubernetes cluster with ease☆215Updated last week
- A tool for in-depth analysis of container checkpoints☆122Updated 3 weeks ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated this week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆128Updated 3 weeks ago
- sigstore the hard way!☆116Updated 2 months ago
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆83Updated this week
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆77Updated last month
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆147Updated last week
- sigstore installation walkthrough, local☆63Updated last year
- BadRobot - Operator Security Audit Tool☆223Updated 2 weeks ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- Hydrophone is a lightweight Kubernetes conformance tests runner☆103Updated 3 weeks ago
- Tools for understanding, measuring, and applying network policies effectively in kubernetes☆121Updated last year
- Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA☆68Updated last year
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Updated last year
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated 2 months ago
- Kyverno for any JSON!☆87Updated 9 months ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year