Alternatives and similar repositories for cnspec

Users that are interested in cnspec are comparing it to the libraries listed below

• mondoohq / cnquery

  View on GitHub
  open source, cloud-native, graph-based asset inventory
  ☆388Updated this week
• mondoohq / cnspec-policies

  View on GitHub
  This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.
  ☆46Jun 6, 2025Updated 8 months ago
• mondoohq / mondoo-operator

  View on GitHub
  ☸️ Mondoo Client Kubernetes Operator
  ☆40Updated this week
• mondoohq / cnquery-packs

  View on GitHub
  This repository contains query packs for cnquery maintained by Mondoo and the cnquery community.
  ☆25Jun 6, 2025Updated 8 months ago
• mondoohq / ranger-rpc

  View on GitHub
  Ranger RPC is a simple and fast proto-based RPC framework
  ☆15Jan 26, 2026Updated 2 weeks ago
• mondoohq / packer-plugin-cnspec

  View on GitHub
  Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!
  ☆27Updated this week
• mondoohq / installer

  View on GitHub
  Linux, macOS and Windows Install scripts for cnquery & cnspec
  ☆83Updated this week
• mondoohq / samples

  View on GitHub
  Security Scanning Samples with cnspec, cnquery, and Mondoo Platform
  ☆16Feb 4, 2026Updated last week
• dineshgowda24 / ecsnv

  View on GitHub
  A lightweight utility to dump AWS Fargate's ECS containers environment variables locally
  ☆29Feb 26, 2023Updated 2 years ago
• AppOmni-Labs / heisenberg-ssc-health-check

  View on GitHub
  Analyzes software dependencies across GitHub repositories to identify security vulnerabilities and health risks in your supply chain.
  ☆118Dec 9, 2025Updated 2 months ago
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• controlplaneio / badrobot

  View on GitHub
  BadRobot - Operator Security Audit Tool
  ☆223Feb 2, 2026Updated last week
• jetstack / paranoia

  View on GitHub
  Inspect certificate authorities in container images
  ☆240Dec 4, 2025Updated 2 months ago
• Legit-Labs / legitify

  View on GitHub
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆829Mar 28, 2025Updated 10 months ago
• kubewarden / policy-evaluator

  View on GitHub
  Crate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.
  ☆17Jan 19, 2026Updated 3 weeks ago
• paralus / paralus

  View on GitHub
  All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.
  ☆1,171Jan 29, 2026Updated 2 weeks ago
• observability-studio / grafana-ops

  View on GitHub
  A GitOps Way To Manage Grafana Data Sources At Scale
  ☆23May 28, 2022Updated 3 years ago
• devops-kung-fu / hookz

  View on GitHub
  Manages client side git hooks resulting in the ability to create git action pipelines.
  ☆78Jul 5, 2024Updated last year
• Checkmarx / kics

  View on GitHub
  Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…
  ☆2,572Updated this week
• stackrox / stackrox

  View on GitHub
  The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, …
  ☆1,257Updated this week
• owenrumney / lazytrivy

  View on GitHub
  Vulnerability scanning just got lazier
  ☆318Updated this week
• hardbyte / netchecks

  View on GitHub
  Tool to validate assumptions about the network
  ☆164Feb 8, 2026Updated last week
• gschaeffer / scc-findings-to-pubsub

  View on GitHub
  Google Cloud Platform (GCP) Security Command Center Alerts enablement scripts
  ☆32Apr 8, 2021Updated 4 years ago
• project-copacetic / copacetic

  View on GitHub
  🧵 CLI tool for directly patching container images!
  ☆1,528Feb 7, 2026Updated last week
• GoogleCloudPlatform / active-assist

  View on GitHub
  ☆25Jun 27, 2024Updated last year
• edgelesssys / constellation

  View on GitHub
  Constellation is a Kubernetes distribution for confidential computing, securing entire clusters on untrusted infrastructure. Constellati…
  ☆1,102Jan 22, 2026Updated 3 weeks ago
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆89Aug 1, 2024Updated last year
• Algbra-Labs-OSS / Chronicle

  View on GitHub
  ☆65May 21, 2024Updated last year
• chainguard-dev / bomshell

  View on GitHub
  An SBOM query language and associated utilities
  ☆55Jan 22, 2024Updated 2 years ago
• reposaur / reposaur

  View on GitHub
  Open source compliance tool for development platforms.
  ☆285Oct 30, 2023Updated 2 years ago
• chef / chef-load

  View on GitHub
  chef-load - a tool for simulating load on a Chef Infra Server and/or a Chef Automate server
  ☆33Sep 10, 2025Updated 5 months ago
• tfmake / tfmake

  View on GitHub
  Automating Terraform with the power of make.
  ☆28Jun 29, 2025Updated 7 months ago
• notaryproject / ratify

  View on GitHub
  Artifact Ratification Framework (CNCF Sandbox)
  ☆283Feb 2, 2026Updated last week
• containers / oci-seccomp-bpf-hook

  View on GitHub
  OCI hook to trace syscalls and generate a seccomp profile
  ☆337Updated this week
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated last month
• haoliangyu / terrac

  View on GitHub
  A minimal private module registry for Terraform and OpenTofu
  ☆33Jan 30, 2026Updated 2 weeks ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆228Jan 29, 2026Updated 2 weeks ago
• sse-secure-systems / connaisseur

  View on GitHub
  An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
  ☆470Updated this week