Alternatives and similar repositories for Threat-Matrix-for-Kubernetes:

Users that are interested in Threat-Matrix-for-Kubernetes are comparing it to the libraries listed below

• OperantAI / secops-chaos
  Security-focused Chaos Experiments for DevSecOps Teams
  ☆24Updated last month
• aquasecurity / windows-bench
  Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark
  ☆18Updated last week
• raesene / teisteanas
  ☆20Updated 9 months ago
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 7 months ago
• aquasecurity / saas-api-samples
  Sample code snippets for consuming the CloudSploit API
  ☆13Updated last year
• google / containerdbg
  ☆74Updated 2 months ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆67Updated this week
• google / container-explorer
  ☆80Updated 2 months ago
• elastic / csp-security-policies
  Cloud Security Posture security policies
  ☆29Updated 5 months ago
• chainguard-dev / justtrustme
  ☆53Updated this week
• google / localtoast
  ☆111Updated last month
• GoogleCloudPlatform / assured-workloads-terraform
  ☆14Updated 6 months ago
• CrowdStrike / falcon-operator
  ☆50Updated this week
• raesene / eathar
  ☆25Updated 9 months ago
• ossf / ossf-landscape
  ☆27Updated this week
• WithSecureLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆21Updated 5 months ago
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 3 months ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated this week
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆20Updated 4 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆79Updated last month
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆30Updated 4 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated last year
• antitree / seccomp-diff
  ☆62Updated 3 weeks ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• spotify / gcp-aws-iam-federation-webidentity
  Creates needed resources for federating access between a GCP service account and AWS IAM role.
  ☆28Updated 10 months ago
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆46Updated last year
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated this week
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆174Updated 3 years ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆39Updated last year