arnica-ext / GitGoatLinks
GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
☆170Updated 7 months ago
Alternatives and similar repositories for GitGoat
Users that are interested in GitGoat are comparing it to the libraries listed below
Sorting:
- Evaluate source control (GitHub) security posture☆252Updated 2 years ago
- Open source compliance tool for development platforms.☆287Updated last year
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆150Updated 2 weeks ago
- boostsecurityio/poutine☆314Updated 2 weeks ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 2 weeks ago
- ☆121Updated 3 months ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆197Updated last year
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆112Updated last week
- Compares and analyzes GCP IAM roles.☆77Updated 6 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆87Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆109Updated 8 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- A tool for preventing the installation of malicious npm and PyPI packages☆160Updated last week
- ☆114Updated last month
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆103Updated last year
- A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…☆43Updated last year
- AWS honey token manager☆87Updated last year
- Inspect certificate authorities in container images☆236Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆176Updated 9 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- Documenting your Threat Models with HCL☆433Updated 3 months ago
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆361Updated last month
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated last year
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆51Updated 3 years ago
- A Golang program to rotate AWS & GCP account keys☆65Updated 4 months ago
- ☆286Updated 2 years ago
- Open-source best practices for protecting a secure, sensible cloud platform☆126Updated 10 months ago
- Google Maps for AWS IAM☆231Updated this week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago