Alternatives and similar repositories for gitoops:

Users that are interested in gitoops are comparing it to the libraries listed below

• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆750Updated 9 months ago
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆944Updated 2 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆330Updated last year
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆398Updated 3 months ago
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,989Updated this week
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆495Updated last year
• cider-security-research / top-10-cicd-security-risks
  ☆407Updated 2 years ago
• joshlarsen / aws-recon
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆544Updated 3 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆426Updated 7 months ago
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆725Updated 2 years ago
• WithSecureLabs / leonidas
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆562Updated 4 months ago
• PaperMtn / slack-watchman
  Slack enumeration and exposed secrets detection tool
  ☆374Updated 4 months ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆380Updated last year
• assetnote / ghostbuster
  Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
  ☆271Updated 7 months ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆339Updated 3 years ago
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆694Updated last year
• vchinnipilli / kubestriker
  A Blazing fast Security Auditing tool for Kubernetes
  ☆995Updated last year
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆922Updated this week
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆2,081Updated last month
• quarkslab / kdigger
  Kubernetes focused container assessment and context discovery tool for penetration testing
  ☆454Updated 10 months ago
• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆723Updated 2 months ago
• DataDog / security-labs-pocs
  Proof of concept code for Datadog Security Labs referenced exploits.
  ☆435Updated 3 weeks ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated 2 years ago
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆343Updated last year
• hysnsec / awesome-policy-as-code
  A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
  ☆188Updated last year
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆124Updated last year
• chughes757 / SecureSoftwareSupplyChain
  This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
  ☆137Updated 2 years ago
• wiz-sec-public / cloud-middleware-dataset
  ☆241Updated 9 months ago
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆837Updated last year
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆97Updated last year