Alternatives and similar repositories for GitGoat

Users that are interested in GitGoat are comparing it to the libraries listed below

• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆250Updated 2 years ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated last week
• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆149Updated 2 weeks ago
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆286Updated last year
• orcasecurity / orca-toolbox
  ☆117Updated last month
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆306Updated 2 weeks ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆105Updated 6 months ago
• chainguard-dev / dfc
  (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.
  ☆79Updated last week
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 4 months ago
• hysnsec / awesome-policy-as-code
  A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
  ☆192Updated last year
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆150Updated last week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆234Updated 3 weeks ago
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆86Updated this week
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆285Updated 10 months ago
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆215Updated last week
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆105Updated last month
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆111Updated this week
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated 11 months ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆97Updated 5 months ago
• GitGuardian / ggcanary
  GitGuardian Canary Tokens
  ☆136Updated 2 weeks ago
• mondoohq / cnspec
  An open source, cloud-native security to protect everything from build to runtime
  ☆306Updated this week
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated 10 months ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆169Updated 10 months ago
• iacsecurity / tool-compare
  ☆285Updated 2 years ago
• SeisoLLC / easy_infra
  A docker container to simplify and secure the use of Infrastructure as Code (IaC)
  ☆74Updated this week
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆126Updated 8 months ago
• tuladhar / cleanup-aws-access-keys
  A cloud security tool to search and clean up unused AWS access keys, written in Go.
  ☆51Updated 2 years ago
• iKnowJavaScript / terraform-aws-vulne-soldier
  This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…
  ☆48Updated last week
• owenrumney / lazytrivy
  Vulnerability scanning just got lazier
  ☆291Updated last month