arnica-ext / GitGoatLinks
GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
☆171Updated 11 months ago
Alternatives and similar repositories for GitGoat
Users that are interested in GitGoat are comparing it to the libraries listed below
Sorting:
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆149Updated this week
- Open source compliance tool for development platforms.☆286Updated 2 years ago
- ☆124Updated 7 months ago
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆114Updated 4 months ago
- Compares and analyzes GCP IAM roles.☆78Updated 10 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated last week
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆202Updated 2 years ago
- ☆115Updated 5 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆827Updated 9 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆110Updated last year
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆292Updated last year
- boostsecurityio/poutine☆354Updated last week
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated 2 years ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆41Updated 3 years ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆52Updated 3 years ago
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆336Updated last month
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆49Updated 6 months ago
- ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…☆37Updated last year
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆212Updated last week
- List of known AWS accounts☆250Updated last month
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆125Updated 3 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆105Updated 2 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated 2 years ago
- AWS honey token manager☆89Updated last year
- OWASP Foundation Web Respository☆100Updated 3 weeks ago
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆95Updated last week
- Open-source best practices for protecting a secure, sensible cloud platform☆129Updated last year
- A tool to check the security settings of Github Organizations.☆75Updated 2 years ago
- A collection of tools to improve your containerized apps security posture☆150Updated last year