praetorian-inc / snowcat
a tool to audit the istio service mesh
☆173Updated 3 years ago
Alternatives and similar repositories for snowcat:
Users that are interested in snowcat are comparing it to the libraries listed below
- Runtime security plug to protect user containers☆65Updated 3 weeks ago
- Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.☆162Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated this week
- ☆25Updated 10 months ago
- Kubernetes audit logging, when you don't control the control plane☆71Updated this week
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆123Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆80Updated 2 months ago
- ☆29Updated last month
- ☆53Updated 2 weeks ago
- ☆93Updated last month
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- Dynamic Application and API Security Testing☆191Updated last year
- Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification☆65Updated 2 months ago
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- BadRobot - Operator Security Audit Tool☆218Updated this week
- Cloud Native Security Hub - Security Resources☆54Updated 4 years ago
- Kubernetes Common Configuration Scoring System☆124Updated 2 years ago
- Scans SBOMs for vulnerabilities with Grype☆79Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Updated 10 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆69Updated 2 years ago
- Create Kubernetes AdmissionReview requests from Kubernetes resource manifests☆115Updated last week
- ☆67Updated last month
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- ☆111Updated 2 months ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆30Updated last year
- An SBOM query language and associated utilities☆54Updated last year
- Compares and analyzes GCP IAM roles.☆77Updated this week