Alternatives and similar repositories for threat-modelling-zero-trust-talk

Users that are interested in threat-modelling-zero-trust-talk are comparing it to the libraries listed below

• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated last week
• sighupio / container-signature-enforcer
  ☆27Updated 3 years ago
• imjasonh / rbac-audit
  Generate K8s RBAC policies based on e2e test runs
  ☆28Updated 4 years ago
• rode / rode-legacy
  cloud native software supply chain ☁️🔗
  ☆63Updated 4 years ago
• hasheddan / veneer
  A library for representing OCI image layers in an abstract filesystem
  ☆27Updated 5 years ago
• square / spiffe-aws-assume-role
  This tool allows using a SPIFFE JWT to authenticate to AWS APIs
  ☆34Updated 2 months ago
• ChaosInTheCRD / Dexter
  Trust Dexter to ensure that all your images are pinned by digest for better security
  ☆30Updated last year
• chris-short / chkcerts
  A Go program to display certificate chains simply and quickly with an easy to remember syntax
  ☆28Updated 10 months ago
• sysdiglabs / opa-image-scanner
  Kubernetes Admission Controller for Image Scanning using OPA
  ☆50Updated 2 years ago
• developer-guy / container-image-sign-and-verify-with-cosign-and-opa
  This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
  ☆63Updated 4 years ago
• Rimurutempestx / Amazon-EKS-Breakdown
  ☆16Updated 2 years ago
• ritazh / psp-gatekeeper-policies
  ☆32Updated 5 years ago
• mattmoor / kind-oidc
  Play with KinD and OIDC volumes
  ☆15Updated 3 years ago
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 10 months ago
• MattiasGees / spiffe-demo
  Showcasing the potential of SPIFFE with real-life services
  ☆10Updated last month
• mathieu-benoit / istio-gatekeeper-demos
  Demos and resources of the Istio + Gatekeeper talks at IstioCon 2022 and GitOpsCon 2022
  ☆14Updated 2 years ago
• abstractinfrastructure / sigstore-intro-tutorial
  ☆15Updated 2 years ago
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• chainguard-dev / policy-catalog
  ☆20Updated 3 months ago
• adobe / cluster-registry
  A lightweight API for maintaining a list of Kubernetes clusters and associated metadata.
  ☆28Updated last week
• mattmoor / zero-friction-actions
  An example repo demonstrating keyless signing with Github Actions
  ☆11Updated 3 years ago
• nonstandardlogic / kubevscan
  Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.
  ☆23Updated 4 years ago
• tstromberg / sigstore-the-local-way
  sigstore installation walkthrough, local
  ☆62Updated last year
• onelittlenightmusic / opactl
  A simple tool for converting Rego (OPA) rule into command.
  ☆30Updated 3 years ago
• reulan / clairvoyance
  Drift detection and reporting for Terraform.
  ☆27Updated 4 years ago
• cloud-native-skunkworks / ohmyyaml
  A single repo that shows terraform, terragrunt, helm & docker
  ☆21Updated 3 years ago
• zawachte / etcd-k8s-extract
  etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…
  ☆36Updated 8 months ago
• ObjectifLibre / helm-trivy
  ☆12Updated 5 years ago
• chainguard-dev / terraform-provider-oci
  Terraform provider to perform OCI image operations
  ☆14Updated last week
• falcosecurity-retire / cloud-native-security-hub
  Cloud Native Security Hub - Security Resources
  ☆54Updated 5 years ago