alexkoltun

apiclarity

Reconstruct Open API Specifications from real-time workload traffic seamlessly.

bcc

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

bpftrace

High-level tracing language for Linux eBPF

chain-bench

Chain-bench is an open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

cilium

eBPF-based Networking, Security, and Observability

cluster-container-scanner-api

Container scanner API wrapper

CRDs-catalog

datree

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! Datree is a CLI tool to ensure K8s configs follow stability & security best practices as well as your organization’s policies. See our docs: https://hub.datree.io

ebpf

Pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.

go-dep-parser

Dependency Parser for Multiple Programming Languages

grype

A vulnerability scanner for container images and filesystems

hubble

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

kubeclarity

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems

kubescape

Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.

opa

An open source, general-purpose policy engine.

open-cvdb

An open project to list all publicly known cloud vulnerabilities and CSP security issues

prowler

Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

python-barcode

㊙️ Create standard barcodes with Python. No external dependencies. 100% Organic Python.

saas-terraform-connection

Terraform modules for CloudSploit Scanner

starboard

Moved to https://github.com/aquasecurity/trivy-operator

syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

terragoat

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

tfsec

Security scanner for your Terraform code

tinygrad

You like pytorch? You like micrograd? You love tinygrad! ❤️

tracee

Linux Runtime Security and Forensics using eBPF

trivy

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets

trivy-db

trivy-operator

Kubernetes-native security toolkit