arnica-ext / GitGoatLinks
GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
☆170Updated 10 months ago
Alternatives and similar repositories for GitGoat
Users that are interested in GitGoat are comparing it to the libraries listed below
Sorting:
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆151Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated this week
- ☆123Updated 6 months ago
- Open source compliance tool for development platforms.☆287Updated 2 years ago
- Compares and analyzes GCP IAM roles.☆77Updated 8 months ago
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆113Updated 2 months ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆198Updated 2 years ago
- AWS honey token manager☆89Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆105Updated last year
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated 2 years ago
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆50Updated 5 months ago
- boostsecurityio/poutine☆347Updated last week
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆41Updated 2 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 11 months ago
- Open-source best practices for protecting a secure, sensible cloud platform☆128Updated last year
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated last year
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆51Updated 3 years ago
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆206Updated this week
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆88Updated this week
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆333Updated 2 weeks ago
- ☆114Updated 3 months ago
- A list of cloud security tools and vendors.☆180Updated last year
- AWS SSO Reporter☆55Updated 6 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated last year
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆289Updated last year
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆820Updated 8 months ago