mondoohq / cnspecLinks
An open source, cloud-native security to protect everything from build to runtime
☆303Updated this week
Alternatives and similar repositories for cnspec
Users that are interested in cnspec are comparing it to the libraries listed below
Sorting:
- open source, cloud-native, graph-based asset inventory☆355Updated this week
- ☸️ Mondoo Client Kubernetes Operator☆38Updated this week
- This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.☆47Updated 3 weeks ago
- Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!☆28Updated last week
- BadRobot - Operator Security Audit Tool☆221Updated this week
- This repository contains query packs for cnquery maintained by Mondoo and the cnquery community.☆27Updated 3 weeks ago
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago
- KBOM - Kubernetes Bill of Materials☆317Updated 3 months ago
- Open source compliance tool for development platforms.☆286Updated last year
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆350Updated last month
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆100Updated 5 months ago
- Inspect certificate authorities in container images☆234Updated last week
- Ranger RPC is a simple and fast proto-based RPC framework☆16Updated 2 weeks ago
- Response Engine for managing threats in your Kubernetes☆163Updated last week
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆202Updated last week
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆487Updated this week
- Notice: Postee is no longer under active development or maintenance.☆211Updated 3 weeks ago
- ☆237Updated last week
- A list of cloud security tools and vendors.☆168Updated 9 months ago
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆439Updated this week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated last month
- The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.☆240Updated 2 years ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Documenting your Threat Models with HCL☆431Updated 3 weeks ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆190Updated last year
- Github Action to automatically update digests for container images.☆64Updated last month
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated last week
- ☆113Updated last week
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated 2 weeks ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 5 months ago