criticalstack / swollLinks
an experimental suite of applications and APIs for monitoring kernel-level activity on a live Kubernetes cluster
☆69Updated 3 years ago
Alternatives and similar repositories for swoll
Users that are interested in swoll are comparing it to the libraries listed below
Sorting:
- [EXPERIMENTAL] Extend osquery to report on Kubernetes☆228Updated 4 years ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆67Updated last week
- 🎟 Voucher creates attestations for Binary Authorization☆74Updated 3 weeks ago
- A tool for bootstrapping Kubernetes☆68Updated 3 years ago
- Manage AppAmormor profiles for Kubernetes cluster☆42Updated last year
- ⭕️Snooping on the Kubernetes OpenAPI communications☆96Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆65Updated this week
- Envoy External Authorization API Bridge To SPIFFE Workload API☆46Updated 9 months ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 2 months ago
- MagTape Policy-as-Code for Kubernetes☆150Updated last year
- A kubectl plugin which triggers a Sysdig capture☆100Updated 2 years ago
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore☆65Updated last week
- Administrative tooling for Falco☆110Updated last week
- ☆37Updated 4 years ago
- A non-interactive daemon for host management☆114Updated this week
- Cloud Native Security Hub - Security Resources☆54Updated 5 years ago
- ☆35Updated 3 years ago
- The SPIFFE Helper is a tool that can be used to retrieve and manage SVIDs on behalf of a workload☆57Updated last week
- ptrace-based event producer for udig☆67Updated 3 years ago
- Integrates Spiffe and Vault to have secretless authentication☆92Updated this week
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆63Updated 4 years ago
- A Kubernetes dynamic admission controller that uses WebAssembly policies to validate incoming requests☆25Updated 4 years ago
- ☆106Updated 4 months ago
- agent for handling seccomp descriptors for container runtimes☆47Updated last year
- COSI Engine☆39Updated 2 years ago
- cloud native software supply chain ☁️🔗☆63Updated 4 years ago
- vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.☆41Updated 2 years ago
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Tool to convert CNAB bundle.json to OCI index☆57Updated 2 weeks ago
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆82Updated this week