Alternatives and similar repositories for GitGoat:

Users that are interested in GitGoat are comparing it to the libraries listed below

• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated 2 years ago
• orcasecurity / orca-toolbox
  ☆114Updated this week
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆259Updated 3 weeks ago
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆286Updated last year
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆83Updated 2 weeks ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 2 weeks ago
• tuladhar / cleanup-aws-access-keys
  A cloud security tool to search and clean up unused AWS access keys, written in Go.
  ☆50Updated 2 years ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆82Updated 2 months ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆230Updated this week
• google / localtoast
  ☆112Updated 2 months ago
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆178Updated 6 months ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆170Updated 4 months ago
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆85Updated this week
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆178Updated this week
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆129Updated this week
• github / cleanowners
  A GitHub Action to suggest removal of non-organization members from CODEOWNERS files
  ☆127Updated 2 weeks ago
• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆142Updated last week
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆111Updated 5 months ago
• raesene / container-security-site
  ☆93Updated last month
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆124Updated 4 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆161Updated last month
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆70Updated last week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆218Updated last week
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆235Updated 2 years ago
• snyk-tech-services / snyk-scm-contributors-count
  Count distinct contributor of Snyk watched repos across several SCM
  ☆32Updated 8 months ago
• iacsecurity / tool-compare
  ☆282Updated 2 years ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆116Updated last week
• lightspin-tech / eks-creation-engine
  The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…
  ☆40Updated 2 years ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆174Updated last year