Alternatives and similar repositories for cnspec

Users that are interested in cnspec are comparing it to the libraries listed below

• mondoohq / cnquery
  open source, cloud-native, graph-based asset inventory
  ☆387Updated this week
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆186Updated last month
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆223Updated 2 weeks ago
• DataDog / managed-kubernetes-auditing-toolkit
  All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
  ☆370Updated 5 months ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆251Updated 2 years ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆240Updated last month
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆323Updated 5 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆111Updated last year
• deggja / netfetch
  Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.
  ☆450Updated last month
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆213Updated last week
• koslib / awesome-containerized-security
  A collection of tools to improve your containerized apps security posture
  ☆150Updated last year
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆511Updated last week
• aquasecurity / postee
  Notice: Postee is no longer under active development or maintenance.
  ☆207Updated 4 months ago
• mondoohq / mondoo-operator
  ☸️ Mondoo Client Kubernetes Operator
  ☆39Updated this week
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆309Updated last week
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆287Updated 2 years ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆180Updated last year
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆90Updated 2 weeks ago
• aquasecurity / trivy-vscode-extension
  A VS Code Extension for Trivy
  ☆158Updated last month
• CrowdStrike / falcon-helm
  Helm Charts for running CrowdStrike Falcon with Kubernetes
  ☆101Updated last week
• adamiBs / vscode-terraform-live-graph
  The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.
  ☆239Updated 2 years ago
• xeol-io / xeol
  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
  ☆424Updated this week
• SecObserve / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆200Updated this week
• chainguard-dev / dfc
  (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.
  ☆95Updated 3 months ago
• anchore / grant
  A license scanner for container images and filesystems.
  ☆129Updated this week
• chainguard-dev / digestabot
  A Github Action to automatically update digests for container images.
  ☆83Updated this week
• cisco-open / forge
  ForgeMT is a secure, scalable GitHub Actions runner platform for ephemeral workloads. Designed for multi-tenant environments, it automate…
  ☆197Updated this week
• PacoVK / tapir
  A Private Terraform Registry
  ☆234Updated 2 weeks ago
• owenrumney / lazytrivy
  Vulnerability scanning just got lazier
  ☆310Updated last week
• arnica-ext / GitGoat
  GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…
  ☆171Updated 11 months ago