marklechner / priscopeLinks
A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard against supply chain attacks
☆32Updated last year
Alternatives and similar repositories for priscope
Users that are interested in priscope are comparing it to the libraries listed below
Sorting:
- ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…☆37Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆214Updated this week
- The security workflow engine!☆135Updated 2 months ago
- A tool to check the security settings of Github Organizations.☆75Updated 2 years ago
- ☆76Updated 3 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆60Updated last week
- ☆36Updated 8 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated 9 months ago
- 💅🏽 analyzes your github actions☆97Updated 2 weeks ago
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆125Updated 3 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆36Updated 3 months ago
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆137Updated 7 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated last year
- Data about all known supply-chain attacks through history☆63Updated 7 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated last week
- ☆56Updated last month
- Compares and analyzes GCP IAM roles.☆78Updated 10 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆30Updated 11 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated 2 years ago
- A recon tool for GCP Service Account Keys that requires no permissions☆25Updated 9 months ago
- Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…☆69Updated 4 months ago
- Protect against subdomain takeover☆95Updated 6 months ago
- ☆115Updated 5 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆74Updated 3 years ago
- prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.☆45Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆139Updated last year
- a tool to audit the istio service mesh☆174Updated 4 years ago
- Repository to archive GCP Documentation for local use☆16Updated 11 months ago