aws-samples / amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
☆15Updated last year
Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software:
Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 2 months ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Dynamic Application Security Testing (DAST) for Cloud☆44Updated 2 years ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 3 weeks ago
- Slack alert bot for matching Github Audit Events☆10Updated 4 months ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Cedar for Kubernetes brings the power of Cedar to Kubernetes authorization and admission validation, showing how cluster administrators c…☆111Updated 3 weeks ago
- ☆11Updated last year
- ☆42Updated 5 months ago
- This repository contains the code used during my demo at BSidesNYC 2023 where I presented a new method for analysing volatile memory in G…☆1Updated 5 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- *READY TO USE* Terraform baseline for implementing essential AWS security best practices, including Organizations, SSO, MFA, SCPs, Budget…☆23Updated 5 months ago
- Automating Terraform with the power of make.☆24Updated last month
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- Terraform templates for CI/CD to Cloud federation and Cloud2Cloud IAM federations☆63Updated 4 months ago
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 3 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- ☆41Updated 2 years ago
- Creates needed resources for federating access between a GCP service account and AWS IAM role.☆29Updated 11 months ago
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 5 months ago
- Software signing just got easier☆16Updated last year
- `yorbox` is a command-line interface (CLI) tool that helps manage tags consistently across infrastructure as code (IaC) frameworks. It is…☆33Updated 3 months ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆85Updated this week
- Service Control Policies that have been Latacora recommended all wrapped up in terraform that is easy to attach to an OU.☆24Updated 10 months ago
- ☆21Updated last year
- Ghat is a tool for updating your GitHub actions and Terraform with the latest version of it dependencies and using immutable hashes inste…☆25Updated 2 weeks ago
- A Go program to display certificate chains simply and quickly with an easy to remember syntax☆27Updated 5 months ago
- Recursively test a directory tree for Terraform diffs and coverage☆49Updated last year