Alternatives and similar repositories for leaky-vessels-static-detector

Users that are interested in leaky-vessels-static-detector are comparing it to the libraries listed below

• snyk / leaky-vessels-dynamic-detector
  Leaky Vessels Dynamic Detector
  ☆102Updated last month
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆74Updated last year
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆45Updated last year
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆70Updated 4 months ago
• dorkamotorka / ebpf-github-actions
  Demo repository for running eBPF in GitHub Actions
  ☆18Updated last month
• ofirc / k8s-sniff-https
  A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
  ☆67Updated last month
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• lockc-project / lockc
  Making containers more secure with eBPF and Linux Security Modules (LSM)
  ☆228Updated 11 months ago
• mchmarny / vimp
  Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.
  ☆64Updated last year
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆84Updated 4 months ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆46Updated last year
• jpts / kubectl-execws
  A replacement for "kubectl exec" that works over WebSocket connections.
  ☆38Updated last year
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆37Updated 2 years ago
• knative-extensions / security-guard
  Runtime security plug to protect user containers
  ☆65Updated 2 weeks ago
• google / containerdbg
  ☆74Updated this week
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆54Updated 3 months ago
• lizrice / ebpf-advent
  Advent of code in eBPF
  ☆47Updated last year
• cilium / certgen
  A convenience tool to generate and store certificates for Hubble Relay mTLS
  ☆26Updated this week
• raesene / eathar
  ☆25Updated this week
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆277Updated this week
• falcosecurity / rules
  Falco rule repository
  ☆124Updated this week
• ossf / ossf-landscape
  ☆29Updated last week
• TomasPhilippart / ebpfangel
  🐝 Ransomware Detection using Machine Learning with eBPF for Linux.
  ☆61Updated 5 months ago
• k8sstormcenter / honeycluster
  Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - for kind (and GKE, RKE2, AKS)
  ☆44Updated this week
• casbin / k8s-gatekeeper
  Kubernetes (k8s) admission controller webhook based on Casbin
  ☆35Updated last year
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆63Updated last month
• cncf / cncf-fuzzing
  ✨🔐 CNCF Fuzzers
  ☆123Updated 3 months ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆71Updated last month
• aquasecurity / defsec
  Trivy's misconfiguration scanning engine
  ☆218Updated 3 months ago
• antitree / seccomp-diff
  ☆72Updated this week