mondoohq / cnspec
An open source, cloud-native security to protect everything from build to runtime
☆298Updated last week
Alternatives and similar repositories for cnspec:
Users that are interested in cnspec are comparing it to the libraries listed below
- open source, cloud-native, graph-based asset inventory☆343Updated this week
- ☸️ Mondoo Client Kubernetes Operator☆37Updated 3 weeks ago
- This repository contains security policies for cnspec maintained by Mondoo and the cnspec community.☆46Updated this week
- Packer plugin cnspec by Mondoo - Build machine images free of security misconfigurations and vulnerabilities!☆28Updated last week
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆199Updated this week
- BadRobot - Operator Security Audit Tool☆218Updated this week
- Evaluate source control (GitHub) security posture☆249Updated 2 years ago
- Inspect certificate authorities in container images☆231Updated last week
- This repository contains query packs for cnquery maintained by Mondoo and the cnquery community.☆27Updated last month
- KBOM - Kubernetes Bill of Materials☆312Updated last week
- Kubernetes audit logging, when you don't control the control plane☆71Updated last week
- Response Engine for managing threats in your Kubernetes☆152Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆339Updated last year
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- Open source compliance tool for development platforms.☆286Updated last year
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆179Updated last week
- Terraform Private Registry for modules and providers manageable from a REST API☆378Updated this week
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆59Updated last week
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆39Updated 7 months ago
- Documenting your Threat Models with HCL☆425Updated 6 months ago
- Ranger RPC is a simple and fast proto-based RPC framework☆15Updated 3 weeks ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆431Updated this week
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆159Updated 3 months ago
- An all-in-one Terraform management tool.☆155Updated last year
- The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code.☆240Updated last year
- Open source Terraform module registry with UI, optional Git integration and deep analysis. Demo: https://terrareg-main.gitlab-pr.dockstud…☆291Updated 3 weeks ago
- ☆60Updated 2 months ago
- ☆233Updated this week
- ☆112Updated 2 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆79Updated 3 months ago