claroty / netunnel

Related projects: ⓘ

• claroty / asyncalchemy
  A thin async wrapper for SQLAlchemy sessions
  ☆10Updated 3 years ago
• claroty / jwthenticator
  A cloud first service for key to JWT authentication library and server written in Python 3
  ☆19Updated 2 months ago
• robusta-dev / debug-toolkit
  A modern code-injection framework for Python. Like Pyrasite but Kubernetes-aware.
  ☆58Updated last month
• avilum / secimport
  eBPF Python runtime sandbox with seccomp (Blocks RCE).
  ☆179Updated this week
• nianticlabs / modron
  Modron - Cloud security compliance
  ☆32Updated 10 months ago
• WithSecureLabs / IceKube
  ☆163Updated 2 months ago
• openclarity / vmclarity
  VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities
  ☆100Updated 3 weeks ago
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆84Updated last week
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆34Updated last year
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 6 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆56Updated last year
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆65Updated last year
• devops-ia / helm-opencti
  Helm chart for Open Cyber Threat Intelligence Platform
  ☆11Updated this week
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆71Updated last year
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 2 months ago
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆56Updated 2 years ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆56Updated 6 months ago
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆74Updated 6 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆64Updated 9 months ago
• OligoCyberSecurity / ShellTorchChecker
  A tool that checks if a TorchServe instance is vulnerable to CVE-2023-43654
  ☆34Updated 4 months ago
• twistlock / lambda-persistency-poc
  PoC for gaining persistency on vulnerable Lambdas
  ☆30Updated 3 years ago
• abhinavbom / clara
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆31Updated 3 months ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆38Updated last year
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆60Updated 6 months ago
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆78Updated 7 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆70Updated last year
• jgamblin / cve.icu
  CVE.ICU code.
  ☆34Updated this week