gchq / nix-bootstrap
Easily generate reproducible infrastructure
☆26Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for nix-bootstrap
- Repository to archive GCP Documentation for local use☆13Updated last week
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 2 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆70Updated last year
- A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes☆64Updated 4 months ago
- A meta-database collecting resources that compile lists of breaches☆18Updated last week
- ☆15Updated 3 months ago
- Common Golang Packages for use by the Various Cloud Nuke Tools☆28Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆55Updated 7 months ago
- Automated determination of which AWS services run where☆20Updated this week
- ☆29Updated 3 years ago
- Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.☆16Updated 3 years ago
- ☆20Updated 6 months ago
- Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.☆59Updated last year
- Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…☆44Updated this week
- ☆74Updated 2 months ago
- Validate the isolation posture of your container environment.☆25Updated this week
- ☆20Updated last month
- egrets monitors egress☆45Updated 4 years ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- ☆83Updated 4 months ago
- ☆51Updated 8 months ago
- Slack alert bot for matching Github Audit Events☆10Updated last week
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆54Updated 6 months ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- ☆21Updated this week
- Fast init process for virtme-ng☆13Updated 3 weeks ago
- GitHub action to run Kubescape scans☆18Updated 7 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Updated 10 months ago
- argocd managed homelab running in k3s, with a helper written in go to bootstrap the cluster. can also be run with kvms/proxmox☆11Updated this week
- A silly project for free (maybe) egress from EC2 instances using Tailscale and Session Manager☆31Updated last year