Alternatives and similar repositories for cnspec:

Users that are interested in cnspec are comparing it to the libraries listed below

• mondoohq / cnquery
  open source, cloud-native, graph-based asset inventory
  ☆337Updated this week
• mondoohq / cnspec-policies
  This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.
  ☆44Updated this week
• mondoohq / mondoo-operator
  ☸️ Mondoo Client Kubernetes Operator
  ☆38Updated this week
• mondoohq / packer-plugin-cnspec
  Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!
  ☆28Updated this week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆218Updated this week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated last year
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆229Updated 9 months ago
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆311Updated 3 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆198Updated this week
• mondoohq / cnquery-packs
  This repository contains query packs for cnquery maintained by Mondoo and the cnquery community.
  ☆27Updated last month
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆424Updated this week
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆148Updated this week
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆286Updated last year
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆334Updated last year
• aquasecurity / postee
  Notice: Postee is no longer under active development or maintenance.
  ☆210Updated this week
• digitalis-io / vals-operator
  Kubernetes Operator to sync secrets between different secret backends and Kubernetes
  ☆159Updated last month
• aquasecurity / appshield
  Security configuration checks for popular cloud native applications and infrastructure.
  ☆118Updated 3 years ago
• hatchet-dev / hatchet-v1-archived
  An all-in-one Terraform management tool.
  ☆156Updated last year
• common-fate / glide
  Automate permissions to your cloud and critical applications.
  ☆238Updated last year
• fjogeleit / trivy-operator-polr-adapter
  Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports
  ☆57Updated this week
• mondoohq / ranger-rpc
  Ranger RPC is a simple and fast proto-based RPC framework
  ☆15Updated last week
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆146Updated 5 months ago
• chainguard-dev / digestabot
  Github Action to automatically update digests for container images.
  ☆52Updated 3 months ago
• raspbernetes / k8s-security-policies
  This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations…
  ☆176Updated last year
• terrateamio / archived-terrateam-repo
  Terrateam and OpenTofu infrastructure management built for GitHub.
  ☆105Updated 2 months ago
• busser / tftree
  Display your Terraform module call stack in your terminal
  ☆152Updated 2 weeks ago
• ondat / trousseau
  Store and access your secrets the Kubernetes native way with any external KMS.
  ☆176Updated last year
• devops-rob / terraform-provider-terracurl
  A flexible Terraform provider for making API calls
  ☆134Updated this week
• aquasecurity / terraform-provider-aquasec
  ☆36Updated this week