criticalstack / swollLinks
an experimental suite of applications and APIs for monitoring kernel-level activity on a live Kubernetes cluster
β69Updated 3 years ago
Alternatives and similar repositories for swoll
Users that are interested in swoll are comparing it to the libraries listed below
Sorting:
- A tool for bootstrapping Kubernetesβ68Updated 3 years ago
- π Voucher creates attestations for Binary Authorizationβ73Updated 2 months ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.β63Updated last week
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-uβ¦β65Updated last week
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumesβ80Updated last week
- β100Updated 2 months ago
- β37Updated 4 years ago
- Envoy External Authorization API Bridge To SPIFFE Workload APIβ46Updated 6 months ago
- vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.β41Updated last year
- sigstore the hard way!β112Updated last year
- Tutorials about Cilium and SPIRE integrationβ30Updated 3 years ago
- π Rekor transparency log monitoring and alertingβ27Updated last year
- Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchoreβ65Updated last week
- β35Updated 3 years ago
- Go library for installing and managing Kubernetes clustersβ35Updated 2 months ago
- A kubectl plugin which triggers a Sysdig captureβ100Updated 2 years ago
- Diagrams to visually learn Falco and its eBPF probeβ13Updated 4 years ago
- Container Storage Interface components for SPIFFEβ61Updated this week
- Cloud Native Security Hub - Security Resourcesβ54Updated 5 years ago
- COSI Engineβ39Updated 2 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIsβ34Updated this week
- Kit for building Falco drivers: kernel modules or eBPF probesβ65Updated this week
- β74Updated last month
- [EXPERIMENTAL] Extend osquery to report on Kubernetesβ229Updated 4 years ago
- Fast, templated, policy evaluation for networking, access, and admission controlβ73Updated last year
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)β62Updated 3 years ago
- Go implementation for CNAB content trust verification using TUF, Notary, and in-totoβ31Updated last year
- β20Updated 3 weeks ago
- βοΈSnooping on the Kubernetes OpenAPI communicationsβ93Updated this week
- agent for handling seccomp descriptors for container runtimesβ46Updated last year