Alternatives and similar repositories for gasp-docker

Users that are interested in gasp-docker are comparing it to the libraries listed below

• lightspin-tech / red-bucket-gcp
  ☆10Updated 3 years ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆94Updated 6 months ago
• mercari / gcp-sa-key-checker
  A recon tool for GCP Service Account Keys that requires no permissions
  ☆21Updated last month
• 0xdabbad00 / security_incidents_from_caching
  Collection of incidents resulting from caching issues
  ☆29Updated 2 months ago
• marklechner / priscope
  A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard a…
  ☆30Updated 6 months ago
• lirlia / prel
  prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
  ☆44Updated this week
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• CloudWanderer-io / PolicyGlass
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆59Updated 3 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• Vulnetix / vulnetix
  Automate vulnerability triage which prioritizes remediation over discovery
  ☆18Updated this week
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 4 years ago
• google / gke-auditor
  ☆74Updated 4 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 3 years ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated 2 months ago
• offensive-terraform / terraform-aws-cross-account-persistence
  Offensive Terraform module which creates an IAM role with trust relationship with attacker's AWS account and attaches managed IAM Policy …
  ☆12Updated 4 years ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 2 months ago
• twilio-labs / gordon
  Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…
  ☆20Updated 3 months ago
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 3 months ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated last month
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆64Updated 10 months ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• antitree / cmd_and_kubectl_demos
  ☆27Updated 6 months ago
• Netflix-Skunkworks / aws-metadata-proxy
  AWS Metadata Proxy for protection against SSRF
  ☆68Updated 5 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• jchrisfarris / detect-credential-compromise
  Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
  ☆29Updated 5 years ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆24Updated 9 months ago
• allisonis / gcp-iam-sentinel-examples
  ☆28Updated 4 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 2 weeks ago