Alternatives and similar repositories for threat-modelling-zero-trust-talk

Users that are interested in threat-modelling-zero-trust-talk are comparing it to the libraries listed below

• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆24Updated last week
• rode / rode-legacy
  cloud native software supply chain ☁️🔗
  ☆65Updated 4 years ago
• ritazh / psp-gatekeeper-policies
  ☆32Updated 6 years ago
• mattmoor / zero-friction-actions
  An example repo demonstrating keyless signing with Github Actions
  ☆11Updated 3 years ago
• square / spiffe-aws-assume-role
  This tool allows using a SPIFFE JWT to authenticate to AWS APIs
  ☆35Updated last month
• sighupio / container-signature-enforcer
  ☆27Updated 3 years ago
• cmacrae / kove
  Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics
  ☆50Updated 2 years ago
• imjasonh / rbac-audit
  Generate K8s RBAC policies based on e2e test runs
  ☆28Updated 4 years ago
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated last year
• chris-short / chkcerts
  A Go program to display certificate chains simply and quickly with an easy to remember syntax
  ☆28Updated last year
• sysdiglabs / opa-image-scanner
  Kubernetes Admission Controller for Image Scanning using OPA
  ☆50Updated 2 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• reulan / clairvoyance
  Drift detection and reporting for Terraform.
  ☆27Updated 4 years ago
• ChaosInTheCRD / Dexter
  Trust Dexter to ensure that all your images are pinned by digest for better security
  ☆31Updated 2 years ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆174Updated 4 years ago
• developer-guy / container-image-sign-and-verify-with-cosign-and-opa
  This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
  ☆63Updated 4 years ago
• liatrio / tag-o11y-quick-start-manifests
  A set of Kubernetes manifests for standing up a local Observability stack quickly leveraging OpenTelemetry
  ☆13Updated last month
• zawachte / etcd-k8s-extract
  etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…
  ☆38Updated last year
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆83Updated 5 years ago
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆85Updated this week
• anchore / kubernetes-admission-controller
  Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore
  ☆65Updated last week
• policy-hub / policy-hub-cli
  CLI for searching Rego policies
  ☆106Updated 3 years ago
• chainguard-dev / policy-catalog
  ☆20Updated 8 months ago
• onelittlenightmusic / opactl
  A simple tool for converting Rego (OPA) rule into command.
  ☆30Updated 3 years ago
• mattmoor / kind-oidc
  Play with KinD and OIDC volumes
  ☆15Updated 4 years ago
• open-policy-agent / library
  The Open Policy Agent project standard library.
  ☆104Updated 2 years ago
• dlorenc / cosigned
  ☆35Updated 4 years ago
• slok / tfe-drift
  Automated Terraform cloud and enterprise drift detection
  ☆37Updated 2 weeks ago
• Rimurutempestx / Amazon-EKS-Breakdown
  ☆16Updated 2 years ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆90Updated this week