arnica-ext / GitGoatLinks
GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfiguration prevention strategy. It can be used to test products with access to GitHub repositories without a risk to your production environment.
☆170Updated 11 months ago
Alternatives and similar repositories for GitGoat
Users that are interested in GitGoat are comparing it to the libraries listed below
Sorting:
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆150Updated 2 weeks ago
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated this week
- Open source compliance tool for development platforms.☆287Updated 2 years ago
- boostsecurityio/poutine☆351Updated last month
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆114Updated 3 months ago
- ☆124Updated 7 months ago
- Compares and analyzes GCP IAM roles.☆77Updated 9 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆210Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 11 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆88Updated 2 weeks ago
- Open Source Software Secure Supply Chain Framework☆238Updated 3 years ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆201Updated 2 years ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆41Updated 2 years ago
- A tool to check the security settings of Github Organizations.☆75Updated 2 years ago
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆95Updated 3 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆105Updated 2 years ago
- ☆114Updated 4 months ago
- Documenting your Threat Models with HCL☆440Updated this week
- A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.☆30Updated last year
- OWASP Kubernetes security and compliance tool [WIP]☆108Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated 2 weeks ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆51Updated 3 years ago
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆50Updated 5 months ago
- A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…☆43Updated 2 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- Open-source best practices for protecting a secure, sensible cloud platform☆128Updated last year
- ☆103Updated last month
- Inspect certificate authorities in container images☆240Updated 3 weeks ago
- An open source, cloud-native security to protect everything from build to runtime☆392Updated last week