testifysec / solarsploit
Red team tool that emulates the SolarWinds CI compromise attack vector.
☆21Updated 6 months ago
Related projects: ⓘ
- ☆24Updated 4 months ago
- Adversary emulation for EDR/SIEM testing (macOS/Linux)☆34Updated 7 months ago
- An query language and interactive tooling to work with SBOM data.☆12Updated last week
- TACOS framework structural details☆19Updated 9 months ago
- go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems☆12Updated 11 months ago
- ☆20Updated 4 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster☆34Updated 2 years ago
- A repository to store Rad Fingerprinting data.☆23Updated last month
- a tool to audit the istio service mesh☆173Updated 2 years ago
- K8s API Honeypot with Active Defense Capabilities☆35Updated 8 months ago
- ☆51Updated 6 months ago
- egrets monitors egress☆45Updated 4 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆22Updated this week
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆54Updated 4 months ago
- Inspect SSL/TLS traffic using eBPF☆15Updated 10 months ago
- Integrates Spiffe and Vault to have secretless authentication☆82Updated last week
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated last week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆30Updated 8 months ago
- Darkbit Cloud Security Tools☆25Updated 3 years ago
- Kubernetes offensive framework built in eBPF☆34Updated last year
- ☆56Updated 2 years ago
- Go implementation of witness☆21Updated this week
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆50Updated 4 months ago
- ☆29Updated 3 years ago
- An SBOM query language and associated utilities☆54Updated 7 months ago
- Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.☆43Updated last year
- Kubernetes audit logging, when you don't control the control plane☆64Updated this week
- Automated testing, generation & manipulation of #osquery packs☆67Updated 5 months ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆20Updated last year