Alternatives and similar repositories for action

Users that are interested in action are comparing it to the libraries listed below

• listendev / jibril-releases
  Jibril: A performant and low impact Linux runtime security tool agent.
  ☆13Updated 6 months ago
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆112Updated 3 weeks ago
• antitree / seccomp-diff
  ☆85Updated last month
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆46Updated last year
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆123Updated 2 months ago
• ebpffoundation / publications
  Publications from the eBPF foundation
  ☆28Updated last week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated 2 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• dorkamotorka / ebpf-github-actions
  Demo repository for running eBPF in GitHub Actions
  ☆23Updated 8 months ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆75Updated 2 years ago
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆73Updated 7 months ago
• 5GSEC / nimbus
  Intent driven security automation framework
  ☆26Updated 3 months ago
• raesene / teisteanas
  ☆27Updated 6 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆111Updated 11 months ago
• mchmarny / s3cme
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆103Updated last year
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆25Updated last year
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated last year
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆116Updated 4 months ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆167Updated this week
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated 6 months ago
• puerco / bomshell
  An query language and interactive tooling to work with SBOM data.
  ☆14Updated last year
• google / containerdbg
  ☆74Updated 6 months ago
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆103Updated this week
• falcosecurity / evolution
  Evolution process of The Falco Project
  ☆59Updated this week
• kubearmor / policy-templates
  Community curated list of System and Network policy templates for the KubeArmor and Cilium
  ☆49Updated last month
• SBOMit / specification
  ☆69Updated last year
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Updated 7 months ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆60Updated 10 months ago
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated last year
• kubescape / sneeffer
  Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…
  ☆26Updated 2 years ago