mondoohq / cnspecLinks
An open source, cloud-native security to protect everything from build to runtime
☆323Updated this week
Alternatives and similar repositories for cnspec
Users that are interested in cnspec are comparing it to the libraries listed below
Sorting:
- open source, cloud-native, graph-based asset inventory☆378Updated this week
- Inspect certificate authorities in container images☆240Updated 2 weeks ago
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- BadRobot - Operator Security Audit Tool☆223Updated last month
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆209Updated last week
- Open source compliance tool for development platforms.☆288Updated 2 years ago
- The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.☆240Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆88Updated this week
- ☸️ Mondoo Client Kubernetes Operator☆38Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆366Updated 3 months ago
- Response Engine for managing threats in your Kubernetes☆181Updated 2 weeks ago
- Notice: Postee is no longer under active development or maintenance.☆208Updated 2 months ago
- KBOM - Kubernetes Bill of Materials☆322Updated 3 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 10 months ago
- ForgeMT is a secure, scalable GitHub Actions runner platform for ephemeral workloads. Designed for multi-tenant environments, it automate…☆195Updated this week
- A Private Terraform Registry☆232Updated this week
- A collection of tools to improve your containerized apps security posture☆149Updated last year
- A VS Code Extension for Trivy☆151Updated last week
- Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters u…☆31Updated 2 months ago
- This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.☆47Updated 5 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆503Updated last week
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆93Updated last month
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆94Updated 2 months ago
- A list of cloud security tools and vendors.☆179Updated last year
- Style guide for Rego☆203Updated last month
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆67Updated 4 months ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆448Updated last month
- Open source Terraform module registry with UI, optional Git integration and deep analysis. Demo: https://terrareg-main.gitlab-pr.dockstud…☆324Updated last month
- Sato converts ARM or CFN into Terraform☆111Updated this week
- A Github Action to automatically update digests for container images.☆79Updated last week