Alternatives and similar repositories for amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software

Users that are interested in amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software are comparing it to the libraries listed below

• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆150Updated last week
• rallyhealth / conftest-policy-packs
  Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.
  ☆60Updated 2 years ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆251Updated 2 years ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆366Updated 4 months ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• iacsecurity / tool-compare
  ☆285Updated 3 years ago
• primeharbor / sensitive_iam_actions
  Crowdsourced list of sensitive IAM Actions
  ☆157Updated last year
• welldone-cloud / aws-list-resources
  Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …
  ☆180Updated 7 months ago
• chps-dev / chps
  Container Hardening Priorities Specification (CHPS)
  ☆43Updated 8 months ago
• tuladhar / cleanup-aws-access-keys
  A cloud security tool to search and clean up unused AWS access keys, written in Go.
  ☆51Updated 3 years ago
• buildsec / frsca
  ☆253Updated last week
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆234Updated last year
• defenseunicorns-labs / lula1
  The Compliance Validator
  ☆184Updated last month
• aquia-inc / scpkit
  SCP management tool
  ☆134Updated 2 years ago
• common-fate / glide
  Automate permissions to your cloud and critical applications.
  ☆242Updated last year
• wiz-sec / charts
  ☆55Updated last week
• cloudandthings / terraform-aws-clickops-notifier
  Get notified when actions are taken in the AWS Console.
  ☆325Updated 11 months ago
• chainguard-dev / dfc
  (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.
  ☆95Updated 3 months ago
• open-policy-agent / rego-style-guide
  Style guide for Rego
  ☆203Updated 2 months ago
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆223Updated last week
• aws / aws-imds-packet-analyzer
  ☆144Updated 3 weeks ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆168Updated last week
• pete911 / kubectl-iam4sa
  debug IAM roles for service accounts
  ☆66Updated last week
• gblues / aws-ml-opt-out
  A Terraform module that makes it a snap to opt out of all AWS AI/ML data harvesting.
  ☆30Updated last year
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆288Updated 2 years ago
• chainguard-dev / ssc-reading-list
  A reading list for software supply-chain security.
  ☆366Updated 3 years ago
• welldone-cloud / aws-scps-for-sandbox-and-training-accounts
  Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.
  ☆155Updated 5 months ago
• awslabs / terraform-iam-policy-validator
  A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices
  ☆343Updated 6 months ago
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆103Updated this week
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆230Updated 2 months ago