accuknox / discovery-engineLinks
Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data emitted from policy engines..
☆34Updated 3 months ago
Alternatives and similar repositories for discovery-engine
Users that are interested in discovery-engine are comparing it to the libraries listed below
Sorting:
- Community curated list of System and Network policy templates for the KubeArmor and Cilium☆46Updated 5 months ago
- Intent driven security automation framework☆26Updated 2 weeks ago
- Falco plugins registry☆102Updated this week
- Find your favorite eBee☆72Updated 4 months ago
- Administrative tooling for Falco☆110Updated last week
- A tool for in-depth analysis of container checkpoints☆119Updated 2 weeks ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆81Updated this week
- Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…☆52Updated 2 weeks ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆106Updated 2 months ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…☆71Updated 3 weeks ago
- Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA☆67Updated last year
- Tutorials about Cilium and SPIRE integration☆31Updated 3 years ago
- KubeArmor cli tool aka kArmor☆42Updated this week
- The Cluster API provider for creating microvm (i.e. Firecracker, Cloud Hypervisor) clusters☆119Updated last week
- Tools for understanding, measuring, and applying network policies effectively in kubernetes☆119Updated last year
- AI-generated remediations for Falco audit events☆72Updated last year
- Container Storage Interface components for SPIFFE☆61Updated this week
- Kubernetes Operator for Falco☆13Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated this week
- Response Engine for managing threats in your Kubernetes☆169Updated this week
- Operator to deploy confidential containers runtime☆147Updated this week
- Kubernetes network policies☆61Updated this week
- A place for policy work group related proposals and prototypes.☆66Updated 3 months ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆84Updated last month
- Ingress node firewall implements Kubernetes operator to provision stateless ingress node level firewall rules, stateless ingress node fir…☆62Updated last week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated last week
- An OpenShift / Kubernetes operator for network observability☆194Updated this week
- Kubernetes Operator to manage node maintenance through NodeMaintenance custom resources☆43Updated last month