aquasecurity / defsecLinks
Trivy's misconfiguration scanning engine
☆216Updated 8 months ago
Alternatives and similar repositories for defsec
Users that are interested in defsec are comparing it to the libraries listed below
Sorting:
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- Notice: Postee is no longer under active development or maintenance.☆208Updated last month
- Static Analysis Library for Containers☆198Updated 2 years ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆351Updated 6 months ago
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆127Updated last week
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- Open source compliance tool for development platforms.☆287Updated last year
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Runtime security plug to protect user containers☆66Updated this week
- ☆102Updated 8 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆85Updated last year
- Generate a variety of suspect actions that are detected by Falco rulesets☆108Updated 4 months ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆56Updated 3 years ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆110Updated 9 months ago
- Cloud Native Security Hub - Security Resources☆54Updated 5 years ago
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆220Updated 8 months ago
- Falco plugins registry☆104Updated last week
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆161Updated this week
- ☆44Updated 4 months ago
- Documenting your Threat Models with HCL☆433Updated 4 months ago
- book website☆71Updated 3 years ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark☆177Updated 2 weeks ago
- Administrative tooling for Falco☆110Updated last week
- Kubernetes focused container assessment and context discovery tool for penetration testing☆466Updated last year
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆197Updated last year
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆365Updated 2 months ago
- Dynamic Application and API Security Testing☆193Updated 2 years ago
- Links and resources for the O'Reilly Kubernetes Security book☆99Updated 4 years ago
- This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.☆139Updated 3 years ago