Alternatives and similar repositories for deadshot

Users that are interested in deadshot are comparing it to the libraries listed below

• aquasecurity / tfsec-pr-commenter-action
  Add comments to pull requests where tfsec checks have failed
  ☆169Updated 2 years ago
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆288Updated 2 years ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 6 months ago
• arnica-ext / GitGoat
  GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…
  ☆170Updated 9 months ago
• aquasecurity / cfsec
  Static analysis for CloudFormation templates to identify common misconfiguration
  ☆56Updated 3 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆335Updated 6 months ago
• Netflix / weep
  The ConsoleMe CLI utility
  ☆334Updated last year
• github / audit-actions-workflow-runs
  Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded
  ☆77Updated last week
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 5 years ago
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆113Updated 2 months ago
• ovotech / gitoops
  all paths lead to clouds
  ☆638Updated 2 years ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆251Updated 2 years ago
• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆759Updated last year
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆82Updated 4 years ago
• marcin-kolda / gcp-iam-collector
  Python script for collecting and visualising Google Cloud Platform IAM permissions
  ☆50Updated 8 years ago
• iann0036 / gcp.permissions.cloud
  A crowdsourced Google Cloud IAM permissions reference.
  ☆25Updated 4 months ago
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆87Updated 6 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• aquasecurity / defsec
  Trivy's misconfiguration scanning engine
  ☆215Updated 10 months ago
• lazy-actions / gitrivy
  GitHub Issue + Trivy Action
  ☆55Updated 2 years ago
• Open-Source-Security-Coalition / Open-Source-Security-Coalition
  ☆41Updated 5 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆95Updated 4 years ago
• DavidDikker / endgame
  An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
  ☆204Updated 4 years ago
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Updated 3 years ago
• triat / terraform-security-scan
  Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec
  ☆113Updated last year
• snyk-labs / github-actions-scanner
  Scans your Github Actions for security issues
  ☆86Updated last week
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆105Updated last year
• hysnsec / awesome-policy-as-code
  A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
  ☆197Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 8 months ago