gbrindisi / dockerfile-security
A collection of OPA rules to statically analyze Dockerfiles to improve security
☆261Updated 2 years ago
Related projects: ⓘ
- MKIT is a Managed Kubernetes Inspection Tool that validates several common security-related configuration settings of managed Kubernetes …☆400Updated 3 years ago
- tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.☆325Updated last year
- This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.☆476Updated last year
- kube-scan: Octarine k8s cluster risk assessment tool☆794Updated last year
- A library of rules for Conftest used to detect misconfigurations within Terraform configuration files☆191Updated 2 years ago
- A Blazing fast Security Auditing tool for Kubernetes☆985Updated 5 months ago
- Bootstrap Kubernetes the hard way on VirtualBox. No scripts.☆65Updated 2 years ago
- A curated list of awesome Kubernetes security resources☆896Updated 9 months ago
- Help building an adaptive and fine-grained pod security policy☆330Updated 11 months ago
- Least privilege AWS IAM Terraformer☆771Updated 6 months ago
- BadRobot - Operator Security Audit Tool☆214Updated this week
- Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.☆809Updated this week
- ☆276Updated last year
- A collection of good practices and tools for Kubernetes RBAC☆232Updated 2 years ago
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆960Updated 2 weeks ago
- Kubernetes RBAC static analysis & visualisation tool☆671Updated last week
- Vulnerability scanning just got lazier☆275Updated 4 months ago
- Simple and idiomatic examples of various Terraform functions and features.☆160Updated last year
- Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark☆207Updated 5 months ago
- Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.☆207Updated last year
- CIS Kubernetes Benchmark - InSpec Profile☆292Updated last month
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆205Updated 3 years ago
- A faster and easier way to manage the lifecycle of applications and tools, running and living around your Kubernetes platform☆185Updated 2 years ago
- TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how…☆1,135Updated last week
- In a world where everything is Terraform, teams use Terraform Cloud API to manage their workloads. TECLI increases teams productivity by …☆211Updated 9 months ago
- Network security testing for Kubernetes DevSecOps workflows☆367Updated last month
- Project scaffolding for Terraform☆261Updated 4 months ago
- Security risk analysis for Kubernetes resources☆508Updated 9 months ago
- Identity & Access Management simplified and secure.☆247Updated last year
- This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations…☆176Updated 10 months ago