prancer-io / prancer-compliance-test
This repository includes cloud security policies for IaC and live resources.
☆39Updated 3 months ago
Related projects: ⓘ
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated 11 months ago
- Cloud Security Posture security policies☆29Updated last week
- An OPA library to develop IT Control policies, for the IBM Cloud☆18Updated last year
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated last year
- ☆49Updated 2 weeks ago
- ☆16Updated 6 months ago
- Slack alert bot for matching Github Audit Events☆10Updated last month
- Awesome AWS service control policies (SCPs)☆17Updated 3 weeks ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 3 months ago
- Boilerplate example of managing OPA with kustomize☆18Updated this week
- Lambda function for verifying signed images in ECS☆33Updated 6 months ago
- View dashboards and reports across all of your Kubernetes clusters using Powerpipe and Steampipe.☆27Updated 4 months ago
- ☆13Updated last year
- Darkbit Cloud Security Tools☆25Updated 3 years ago
- Open source IaC security scanner for public Helm charts☆87Updated 2 years ago
- Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters u…☆32Updated 6 months ago
- Creates needed resources for federating access between a GCP service account and AWS IAM role.☆26Updated 5 months ago
- Alcide Kubernetes Advisor ... Cluster Hygiene & Security Scanner - Pipeline Integration☆28Updated 2 years ago
- vscode extension for tfsec☆30Updated last year
- Use SQL to instantly query Prometheus metrics, alerts, labels and more. Open source CLI. No DB required.☆17Updated last week
- ☆15Updated last year
- ☆19Updated this week
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆24Updated 6 months ago
- Serverless, Zero-Trust SSH for Microsoft Azure☆71Updated 9 months ago
- A collection of Docker and Kubernetes resources☆17Updated last year
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- Report OPA Gatekeeper audit violations in Security Command Center.☆41Updated last month
- Lint your Rego policies inside of Visual Studio Code☆15Updated 3 months ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆20Updated last year