mondoohq/cnspec

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mondoohq/cnspec)

mondoohq / cnspec

An open source, cloud-native security to protect everything from build to runtime

☆403

Alternatives and similar repositories for cnspec

Users that are interested in cnspec are comparing it to the libraries listed below

Sorting:

mondoohq / mql
View on GitHub
open source, cloud-native, graph-based query language
☆390Updated this week
mondoohq / cnspec-policies
View on GitHub
This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.
☆46Jun 6, 2025Updated 9 months ago
mondoohq / mondoo-operator
View on GitHub
☸️ Mondoo Client Kubernetes Operator
☆39Mar 2, 2026Updated last week
mondoohq / ranger-rpc
View on GitHub
Ranger RPC is a simple and fast proto-based RPC framework
☆16Mar 2, 2026Updated last week
mondoohq / packer-plugin-cnspec
View on GitHub
Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!
☆27Mar 3, 2026Updated last week
mondoohq / installer
View on GitHub
Linux, macOS and Windows Install scripts for cnquery & cnspec
☆83Mar 3, 2026Updated last week
mondoohq / samples
View on GitHub
Security Scanning Samples with cnspec, cnquery, and Mondoo Platform
☆16Feb 25, 2026Updated last week
dineshgowda24 / ecsnv
View on GitHub
A lightweight utility to dump AWS Fargate's ECS containers environment variables locally
☆29Feb 26, 2023Updated 3 years ago
AppOmni-Labs / heisenberg-ssc-health-check
View on GitHub
Analyzes software dependencies across GitHub repositories to identify security vulnerabilities and health risks in your supply chain.
☆121Dec 9, 2025Updated 3 months ago
GoogleCloudPlatform / assured-workloads-terraform
View on GitHub
☆18Jul 30, 2024Updated last year
controlplaneio / badrobot
View on GitHub
BadRobot - Operator Security Audit Tool
☆225Feb 2, 2026Updated last month
jetstack / paranoia
View on GitHub
Inspect certificate authorities in container images
☆241Dec 4, 2025Updated 3 months ago
paralus / paralus
View on GitHub
All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.
☆1,180Jan 29, 2026Updated last month
Legit-Labs / legitify
View on GitHub
Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
☆833Mar 28, 2025Updated 11 months ago
kubewarden / policy-evaluator
View on GitHub
Crate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.
☆17Jan 19, 2026Updated last month
observability-studio / grafana-ops
View on GitHub
A GitOps Way To Manage Grafana Data Sources At Scale
☆23May 28, 2022Updated 3 years ago
devops-kung-fu / hookz
View on GitHub
Manages client side git hooks resulting in the ability to create git action pipelines.
☆78Jul 5, 2024Updated last year
stackrox / stackrox
View on GitHub
The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, …
☆1,265Updated this week
Checkmarx / kics
View on GitHub
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…
☆2,581Updated this week
owenrumney / lazytrivy
View on GitHub
Vulnerability scanning just got lazier
☆319Updated this week
project-copacetic / copacetic
View on GitHub
🧵 CLI tool for directly patching container images!
☆1,552Updated this week
hardbyte / netchecks
View on GitHub
Tool to validate assumptions about the network
☆164Updated this week
FalcoSuessgott / mdtmpl
View on GitHub
A dead simple Markdown templating tool
☆10Jul 7, 2025Updated 8 months ago
FriendsOfTerraform / tfdocs-extras
View on GitHub
Document your Terraform modules' inputs and outputs inline using the @-notation you've seen in other languages.
☆33Mar 3, 2026Updated last week
ReversecLabs / IAMSpy
View on GitHub
☆229Feb 24, 2026Updated 2 weeks ago
gschaeffer / scc-findings-to-pubsub
View on GitHub
Google Cloud Platform (GCP) Security Command Center Alerts enablement scripts
☆32Apr 8, 2021Updated 4 years ago
GoogleCloudPlatform / active-assist
View on GitHub
☆25Jun 27, 2024Updated last year
edgelesssys / constellation
View on GitHub
Constellation is a Kubernetes distribution for confidential computing, securing entire clusters on untrusted infrastructure. Constellati…
☆1,100Jan 22, 2026Updated last month
StevenSmiley / aws-mine
View on GitHub
AWS honey token manager
☆89Aug 1, 2024Updated last year
Algbra-Labs-OSS / Chronicle
View on GitHub
☆65May 21, 2024Updated last year
chainguard-dev / bomshell
View on GitHub
An SBOM query language and associated utilities
☆55Jan 22, 2024Updated 2 years ago
reposaur / reposaur
View on GitHub
Open source compliance tool for development platforms.
☆285Oct 30, 2023Updated 2 years ago
chef / chef-load
View on GitHub
chef-load - a tool for simulating load on a Chef Infra Server and/or a Chef Automate server
☆33Sep 10, 2025Updated 6 months ago
noqdev / iambic
View on GitHub
IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, hum…
☆297Nov 27, 2024Updated last year
tfmake / tfmake
View on GitHub
Automating Terraform with the power of make.
☆28Jun 29, 2025Updated 8 months ago
notaryproject / ratify
View on GitHub
Artifact Ratification Framework (CNCF Sandbox)
☆285Updated this week
containers / oci-seccomp-bpf-hook
View on GitHub
OCI hook to trace syscalls and generate a seccomp profile
☆338Feb 12, 2026Updated 3 weeks ago
offensive-actions / azure-storage-reverse-shell
View on GitHub
This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
☆39Sep 25, 2024Updated last year
haoliangyu / terrac
View on GitHub
A minimal private module registry for Terraform and OpenTofu
☆34Jan 30, 2026Updated last month