cr0hn / dockerfile-securityLinks
Static security checker for Dockerfiles
β94Updated last year
Alternatives and similar repositories for dockerfile-security
Users that are interested in dockerfile-security are comparing it to the libraries listed below
Sorting:
- Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.β78Updated 4 years ago
- ποΈ STRIDE vs. ASVS equivalence tableβ76Updated 10 months ago
- Monitoring GitHub for sensitive data shared publiclyβ66Updated 3 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.β134Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.β76Updated 3 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelinesβ106Updated 2 years ago
- Cloud Security Dashboard for AWS - based on ScoutSuiteβ1Updated last year
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.β111Updated 4 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ139Updated 3 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.β80Updated 5 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).β122Updated 2 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)β31Updated 2 years ago
- A Docker container for remote penetration testing.β135Updated 4 years ago
- β65Updated 2 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulneβ¦β31Updated 2 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.β110Updated 5 months ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)β89Updated 2 years ago
- Python API library for DefectDojoβ42Updated 2 years ago
- Discover vulnerabilities and container image misconfiguration in production environments.β56Updated 3 weeks ago
- Semgrep rules corresponding to the OWASP ASVS standardβ27Updated 4 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019β81Updated 6 years ago
- β35Updated 4 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β74Updated 3 years ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β133Updated 2 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target containerβ106Updated 6 years ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloβ¦β125Updated last year
- Serverless honeytoken π΅π»ββοΈβ79Updated 2 years ago
- β41Updated 3 years ago
- β74Updated 4 years ago
- Route53/CloudFront Vulnerability Assessment Utilityβ86Updated last year