google / ctrdac

Related projects ⓘ

Alternatives and complementary repositories for ctrdac

• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆70Updated last year
• chainguard-dev / justtrustme
  ☆51Updated 8 months ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 8 months ago
• raesene / eathar
  ☆24Updated 6 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆19Updated 11 months ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆35Updated last year
• tstromberg / ttp-bench
  Adversary emulation for EDR/SIEM testing (macOS/Linux)
  ☆38Updated 9 months ago
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• google / osv-scalibr
  ☆93Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• google / containerdbg
  ☆74Updated 3 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆55Updated 7 months ago
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated 9 months ago
• Permiso-io-tools / SkyScalpel
  ☆22Updated this week
• marklechner / priscope
  A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard a…
  ☆27Updated 3 weeks ago
• rad-security / fingerprints
  A repository to store Rad Fingerprinting data.
  ☆23Updated 3 months ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆13Updated last month
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆65Updated this week
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆64Updated 4 months ago
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 3 months ago
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 2 months ago
• testifysec / solarsploit
  Red team tool that emulates the SolarWinds CI compromise attack vector.
  ☆22Updated 7 months ago
• evilsocket / unisbom
  UniSBOM is a tool to build a software bill of materials on any platform with a unified data format.
  ☆34Updated 2 years ago
• lirlia / prel
  prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
  ☆36Updated this week
• kube-tarian / tarian
  Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…
  ☆54Updated 6 months ago
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆69Updated 3 weeks ago
• slashben / beat-ac-cosign-verifier
  This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures
  ☆12Updated last year
• chainguard-dev / clank
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆22Updated last week