Alternatives and similar repositories for vmclarity:

Users that are interested in vmclarity are comparing it to the libraries listed below

• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆80Updated 2 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆226Updated 6 months ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆150Updated this week
• kubearmor / policy-templates
  Community curated list of System and Network policy templates for the KubeArmor and Cilium
  ☆43Updated last month
• raesene / container-security-site
  ☆93Updated last month
• falcosecurity / plugins
  Falco plugins registry
  ☆89Updated this week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆71Updated this week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆43Updated last year
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆20Updated 5 months ago
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated last month
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆36Updated 11 months ago
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆171Updated 2 months ago
• antitree / seccomp-diff
  ☆68Updated last month
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆218Updated this week
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆72Updated last year
• Alevsk / dvka
  Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
  ☆130Updated 2 weeks ago
• lobuhi / awrbacs
  AWACS for RBAC. Tool for auditing CRUD permissions in Kubernetes' RBAC.
  ☆46Updated 10 months ago
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆65Updated 2 months ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated last year
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆123Updated 2 weeks ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated 3 weeks ago
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆230Updated this week
• openclarity / kubeclarity
  KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and files…
  ☆35Updated 5 months ago
• google / container-explorer
  ☆84Updated last week
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆255Updated this week
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆69Updated 2 years ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆61Updated last year
• falcosecurity / falcosidekick-ui
  A simple WebUI with latest events from Falco
  ☆119Updated last week