Alternatives and similar repositories for container-hardening

Users that are interested in container-hardening are comparing it to the libraries listed below

• thomasfricke / training-kubernetes-security
  ☆178Updated 2 years ago
• DependencyTrack / helm-charts
  Helm Charts for Dependency-Track
  ☆39Updated 3 weeks ago
• dbsystel / trivy-vulnerability-explorer
  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…
  ☆137Updated this week
• iteratec / kcwarden
  Keycloak Configuration Auditor
  ☆28Updated last week
• jetstack / paranoia
  Inspect certificate authorities in container images
  ☆233Updated 2 weeks ago
• MediaMarktSaturn / technolinator
  GitHub app for SBOM creation using cdxgen and upload to Dependency-Track
  ☆18Updated this week
• dbsystel / oss-red-flag-checker
  Check remote repositories for typical red flags like CLAs and risks due to low development activity
  ☆28Updated 9 months ago
• BSI-Bund / TaSK
  The "TaSK Framework" is a configurable test tool for performing TLS conformity tests based on the Technical Guideline TR-03116-TS.
  ☆137Updated last year
• TNG / elevation-of-privilege
  An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…
  ☆74Updated last week
• hetznercloud / packer-plugin-hcloud
  Packer plugin for Hetzner Cloud Builder
  ☆33Updated 2 weeks ago
• inwx / ansible-collection
  Collection of modules, playbooks and roles for the INWX api.
  ☆30Updated 9 months ago
• mercedes-benz / mercedes-benz-foss-manifesto
  This is the Mercedes-Benz FOSS Manifesto - our path to embrace Open Source
  ☆79Updated 3 weeks ago
• l3montree-dev / devguard
  DevGuard Backend - Secure your Software Supply Chain - Attestation-based compliance as Code, manage your CVEs seamlessly, Integrate your …
  ☆73Updated this week
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆74Updated this week
• MaibornWolff / SecObserve
  SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…
  ☆135Updated this week
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆201Updated last week
• ckotzbauer / vulnerability-operator
  Scans SBOMs for vulnerabilities with Grype
  ☆82Updated this week
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆139Updated 2 weeks ago
• jetstack / dependency-track-exporter
  ☆24Updated 10 months ago
• SovereignCloudStack / standards
  SCS standards in a machine readable format
  ☆38Updated last week
• SORMAS-Foundation / SORMAS-Docker
  ☆30Updated 8 months ago
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆17Updated 5 months ago
• nrdcg / goinwx
  INWX Go API client
  ☆15Updated last month
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• stdevel / linux-host-security
  Talk about Linux host security and various code examples
  ☆16Updated last year
• nmeisenzahl / hijack-kubernetes
  This repo includes a demo that shows how a Kubernetes cluster can be hijacked and how to prevent it using common best practices.
  ☆46Updated 2 years ago
• ossf / security-insights-spec
  Machine-readable specification for the attestation of security-relevant data.
  ☆59Updated 3 weeks ago
• passmower / passmower
  Cloud native OIDC Identity Provider
  ☆52Updated 7 months ago
• rincedd / terraform-provider-netcup-scp
  Terraform provider for the Netcup SCP webservice.
  ☆11Updated 2 years ago