mondoohq / cnspecLinks
An open source, cloud-native security to protect everything from build to runtime
☆323Updated this week
Alternatives and similar repositories for cnspec
Users that are interested in cnspec are comparing it to the libraries listed below
Sorting:
- open source, cloud-native, graph-based asset inventory☆376Updated this week
- Inspect certificate authorities in container images☆238Updated this week
- Evaluate source control (GitHub) security posture☆251Updated 2 years ago
- BadRobot - Operator Security Audit Tool☆223Updated 3 weeks ago
- Open source compliance tool for development platforms.☆288Updated 2 years ago
- Response Engine for managing threats in your Kubernetes☆178Updated last month
- ☸️ Mondoo Client Kubernetes Operator☆38Updated last week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆366Updated 3 months ago
- A collection of tools to improve your containerized apps security posture☆149Updated last year
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆208Updated last week
- Notice: Postee is no longer under active development or maintenance.☆208Updated 2 months ago
- Kubernetes audit logging, when you don't control the control plane☆88Updated last week
- (D)ocker(F)ile (C)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆93Updated last month
- A Github Action to automatically update digests for container images.☆79Updated 3 weeks ago
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆170Updated 9 months ago
- ForgeMT is a secure, scalable GitHub Actions runner platform for ephemeral workloads. Designed for multi-tenant environments, it automate…☆194Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆111Updated 10 months ago
- KBOM - Kubernetes Bill of Materials☆321Updated 3 months ago
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week
- Kubernetes tool for scanning clusters for network policies and identifying unprotected workloads.☆447Updated 2 weeks ago
- The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.☆240Updated 2 years ago
- A collection of reusable Github Actions workflows.☆146Updated last week
- This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.☆47Updated 4 months ago
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆501Updated this week
- A simple WebUI with latest events from Falco☆129Updated 2 weeks ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!☆28Updated last week
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆87Updated this week