Alternatives and similar repositories for policy-templates:

Users that are interested in policy-templates are comparing it to the libraries listed below

• accuknox / discovery-engine
  Discover least permissive security posture, Network Microsegmentation, and Application behaviour based on visibility/observability data e…
  ☆32Updated last year
• falcosecurity / plugins
  Falco plugins registry
  ☆89Updated this week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆43Updated last year
• 5GSEC / nimbus
  Intent driven security automation framework
  ☆25Updated this week
• falcosecurity / event-generator
  Generate a variety of suspect actions that are detected by Falco rulesets
  ☆101Updated last week
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆110Updated 10 months ago
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆79Updated this week
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆123Updated 2 weeks ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆36Updated 11 months ago
• anchore / k8s-inventory
  Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…
  ☆65Updated this week
• falcosecurity / falcosidekick-ui
  A simple WebUI with latest events from Falco
  ☆118Updated last week
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆150Updated this week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆71Updated this week
• giantswarm / starboard-exporter
  A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).
  ☆59Updated last week
• sigstore / policy-controller
  Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…
  ☆128Updated last week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• sigstore / k8s-manifest-sigstore
  kubectl plugin for signing Kubernetes manifest YAML files with sigstore
  ☆80Updated last week
• kubernetes-sigs / wg-policy-prototypes
  A place for policy work group related proposals and prototypes.
  ☆65Updated 2 months ago
• runoncloud / kubectl-np-viewer
  A kubectl plugin to visualize network policies rules.
  ☆95Updated last year
• spiffe / helm-charts-hardened
  ☆21Updated this week
• fjogeleit / trivy-operator-polr-adapter
  Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports
  ☆57Updated this week
• kubescape / cel-admission-library
  This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…
  ☆52Updated last week
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆93Updated this week
• cert-manager / csi-driver-spiffe
  A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes
  ☆77Updated this week
• kubearmor / kubearmor-client
  KubeArmor cli tool aka kArmor
  ☆41Updated this week
• isovalent / ebeedex
  Find your favorite eBee
  ☆61Updated 2 months ago
• k8sstormcenter / honeycluster
  Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)
  ☆33Updated this week
• box / kube-exec-controller
  An admission controller service and kubectl plugin to handle container drift in K8s clusters
  ☆124Updated 3 years ago
• wolfi-dev / wolfictl
  A CLI used to work with the Wolfi OSS project
  ☆60Updated this week
• confidential-containers / operator
  Operator to deploy confidential containers runtime
  ☆125Updated last week