carbonetes / brainiacLinks
BrainIAC uses static code analysis to analyze IAC code to detect security issues before deployment. This tool can scan for issues like security policy misconfigurations, insecure cloud-based services, and compliance issues.
☆71Updated last year
Alternatives and similar repositories for brainiac
Users that are interested in brainiac are comparing it to the libraries listed below
Sorting:
- Generates SBOMs for container images, filesystems, archives, and more to Discover packages and libraries Highly scalable data pipelines f…☆109Updated 7 months ago
- A Github Action that utilizes Diggity to generate software bill-of-materials (SBOM).☆14Updated 2 years ago
- An OPA library to develop IT Control policies, for the IBM Cloud☆17Updated 3 years ago
- ☆18Updated 7 months ago
- Use SQL to instantly query GCP resources across regions, projects and organizations. Open source CLI. No DB required.☆44Updated last week
- Sample hardened Alpine docker image☆24Updated 9 years ago
- Slack alert bot for matching Github Audit Events☆10Updated last year
- Darkbit Cloud Security Tools☆25Updated 5 years ago
- A Golang program to rotate AWS & GCP account keys☆67Updated 9 months ago
- Use SQL to instantly query DNS records, certificates and other network information. Open source CLI. No DB required.☆26Updated 4 months ago
- Coalfire AWS RAMP/pak Reference Architecture☆37Updated last year
- A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…☆43Updated 2 years ago
- Examples, samples, snippets and scripts to use with Steampipe.☆54Updated last year
- Lint your Rego policies inside of Visual Studio Code☆16Updated last year
- Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.☆41Updated 5 months ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️��♀️👩🔬☆103Updated 4 years ago
- The Auditree framework tool to run compliance control checks as unit tests.☆71Updated last year
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- Reasonably Usable Self-hosted Version of OPA's Playground☆36Updated 8 months ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆204Updated 2 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆55Updated 2 months ago
- 🥋 Framework for continuously improving the IT-Security of your teams through gamification and self-assessment.☆84Updated 3 years ago
- Create Logstash events from the Okta API!☆19Updated 3 years ago
- Traffic and attack generation between simulated microservices.☆35Updated 4 years ago
- This repository includes cloud security policies for IaC and live resources.☆40Updated 2 months ago
- Automated determination of which AWS services run where☆20Updated last week
- Use SQL to instantly query calendar events, drive files, gmail messages, and more from Google Workspace. Open source CLI. No DB required.☆20Updated 3 months ago
- Steampipe Plugin SDK is a simple abstraction layer to write a Steampipe plugin. Plugins automatically work across all engine types includ…☆37Updated last week
- Proof of Value Terraform Scripts to utilize Amazon Web Services (AWS) Security, Identity & Compliance Services to Support your AWS Accoun…☆16Updated 5 years ago
- Python library for examining, creating and optimising IAM policies☆22Updated 3 years ago