Alternatives and similar repositories for deadshot

Users that are interested in deadshot are comparing it to the libraries listed below

• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆329Updated last month
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 2 months ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated last month
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated 2 years ago
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆286Updated last year
• iann0036 / gcp.permissions.cloud
  A crowdsourced Google Cloud IAM permissions reference.
  ☆23Updated 9 months ago
• aquasecurity / tfsec-pr-commenter-action
  Add comments to pull requests where tfsec checks have failed
  ☆167Updated last year
• rung / training-devenv-security
  Hands-on Exercises for "Dangerous attack paths: Modern Development Environment Security - Devices and CI/CD pipelines"
  ☆44Updated 2 years ago
• hysnsec / awesome-policy-as-code
  A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
  ☆190Updated last year
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆86Updated this week
• GoogleCloudPlatform / security-response-automation
  Take automated actions against threats and vulnerabilities.
  ☆214Updated last year
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 4 years ago
• arnica-ext / GitGoat
  GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…
  ☆170Updated 4 months ago
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆87Updated last month
• github / audit-actions-workflow-runs
  Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded
  ☆68Updated last month
• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆751Updated 10 months ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆340Updated 3 years ago
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆111Updated last month
• PaperMtn / slack-watchman
  Slack enumeration and exposed secrets detection tool
  ☆379Updated 5 months ago
• m-mizutani / octovy
  Trivy based vulnerability management service
  ☆55Updated 2 months ago
• lazy-actions / gitrivy
  GitHub Issue + Trivy Action
  ☆55Updated 2 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• cookpad / deepalert
  Serverless SOAR (Security Orchestration, Automation and Response) framework for automatic inspection and evaluation of security alert
  ☆48Updated 2 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆81Updated 3 years ago
• ovotech / gitoops
  all paths lead to clouds
  ☆638Updated last year
• orcasecurity / orca-toolbox
  ☆117Updated last week
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆430Updated this week
• omaidf / PrismX
  Cloud Security Dashboard for AWS - based on ScoutSuite
  ☆1Updated last year
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆192Updated this week