Alternatives and similar repositories for chps-scorer

Users that are interested in chps-scorer are comparing it to the libraries listed below

• chps-dev / chps
  Container Hardening Priorities Specification (CHPS)
  ☆31Updated 2 months ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆160Updated last week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆97Updated this week
• chainguard-dev / dfc
  (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.
  ☆65Updated this week
• chainguard-dev / ghscan
  Scan GitHub Actions Workflow logs for IOCs
  ☆15Updated this week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆98Updated 5 months ago
• buildsec / frsca
  ☆236Updated this week
• chainguard-dev / digestabot
  Github Action to automatically update digests for container images.
  ☆60Updated 3 weeks ago
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆220Updated 2 weeks ago
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆125Updated 2 weeks ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆39Updated 9 months ago
• giantswarm / starboard-exporter
  A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).
  ☆61Updated last week
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆145Updated this week
• fjogeleit / trivy-operator-polr-adapter
  Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports
  ☆60Updated last week
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆82Updated this week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆81Updated this week
• falcosecurity / falco-actions
  Run Falco in a GitHub Actions to detect suspicious behavior in your CI/CD
  ☆37Updated this week
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆139Updated 2 weeks ago
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆132Updated this week
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆111Updated last year
• kubernetes / sig-security
  Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security
  ☆205Updated 3 weeks ago
• snyk-labs / kubernetes-goof
  Kubernetes Stranger Danger
  ☆62Updated last year
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆45Updated last year
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated 2 years ago
• sigstore / policy-controller
  Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…
  ☆132Updated this week
• project-copacetic / copa-action
  GitHub Action for Copacetic: Directly patch container image vulnerabilities
  ☆28Updated last year
• cloud-native-security-controls / controls-catalog
  ☆16Updated last year
• kubescape / sneeffer
  Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…
  ☆26Updated last year
• koslib / awesome-containerized-security
  A collection of tools to improve your containerized apps security posture
  ☆143Updated last year