aquasecurity / defsecLinks
Trivy's misconfiguration scanning engine
☆218Updated 5 months ago
Alternatives and similar repositories for defsec
Users that are interested in defsec are comparing it to the libraries listed below
Sorting:
- Static Analysis Library for Containers☆198Updated 2 years ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated last month
- Notice: Postee is no longer under active development or maintenance.☆211Updated 3 weeks ago
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆345Updated 3 months ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆161Updated last year
- Runtime security plug to protect user containers☆65Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- ☆52Updated last week
- Documenting your Threat Models with HCL☆431Updated 3 weeks ago
- ☆98Updated 4 months ago
- Response Engine for managing threats in your Kubernetes☆163Updated last week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆81Updated last year
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆156Updated 3 weeks ago
- Falco plugins registry☆97Updated last week
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated 9 months ago
- Open source compliance tool for development platforms.☆286Updated last year
- Kubernetes focused container assessment and context discovery tool for penetration testing☆461Updated last year
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆67Updated 6 months ago
- A VS Code Extension for Trivy☆142Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆349Updated last month
- Kubernetes audit logging, when you don't control the control plane☆81Updated last week
- Administrative tooling for Falco☆107Updated last week
- This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations…☆175Updated last year
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated 2 weeks ago
- Generate a variety of suspect actions that are detected by Falco rulesets☆105Updated 3 weeks ago
- Dynamic Application and API Security Testing☆192Updated 2 years ago
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆91Updated this week