accuknox / discovery-engineLinks
Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data emitted from policy engines..
☆34Updated 4 months ago
Alternatives and similar repositories for discovery-engine
Users that are interested in discovery-engine are comparing it to the libraries listed below
Sorting:
- Intent driven security automation framework☆26Updated last month
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆47Updated last week
- Find your favorite eBee☆74Updated 6 months ago
- Administrative tooling for Falco☆110Updated 2 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- KubeArmor cli tool aka kArmor☆42Updated this week
- Falco plugins registry☆104Updated last week
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆76Updated last month
- Response Engine for managing threats in your Kubernetes☆170Updated 2 weeks ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆108Updated 4 months ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated this week
- Tools for understanding, measuring, and applying network policies effectively in kubernetes☆123Updated last year
- Kyverno for any JSON!☆86Updated 9 months ago
- A tool for in-depth analysis of container checkpoints☆122Updated last week
- sigstore the hard way!☆117Updated 2 months ago
- Tutorials about Cilium and SPIRE integration☆30Updated 3 years ago
- A place for policy work group related proposals and prototypes.☆66Updated 4 months ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated last month
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆82Updated this week
- An OpenShift / Kubernetes operator for network observability☆198Updated this week
- Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA☆69Updated last year
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- sigstore installation walkthrough, local☆63Updated last year
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆145Updated last week
- The Cluster API provider for creating microvm (i.e. Firecracker, Cloud Hypervisor) clusters☆125Updated last month
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆127Updated last week
- Manage admission policies in your Kubernetes cluster with ease☆215Updated last week
- Nephio is a Kubernetes-based automation platform for deploying and managing highly distributed, interconnected workloads such as 5G Netwo…☆159Updated 3 weeks ago
- Store and access your secrets the Kubernetes native way with any external KMS.☆182Updated 2 years ago