matteobisi

DevSecOps-day-2024-demo

trivy-operator

Kubernetes-native security toolkit

khaos

A lightweight kubernetes operator to test cluster resilience via chaos engineering 💣 ☸️

MTKPI

🧰 Multi Tool Kubernetes Pentest Image

awesome-cloud-native

A curated list for awesome cloud native tools, software and tutorials. - https://jimmysong.io/awesome-cloud-native/

parrot.live

🐦 Bringing animated parrots to terminals everywhere

github-content-sync

check for file differences in github repo folders 🔎 📁

content-sync-tester

test repo for github-content-sync

ansible-role-hardening

Ansible role to apply a security baseline. Systemd edition.

eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee

eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee

syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

grype

A vulnerability scanner for container images and filesystems

cloud-native

Projects and Proof of Concepts regarding the cloud native world ☁️ 🌎

witness

Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.

gatekeeper-policy-manager

A simple to use web-based OPA Gatekeeper policy manager

fury-distribution

Kubernetes Fury Distribution (Core Modules) - A battle-tested open-source Kubernetes distribution

scorecard

OpenSSF Scorecard - Security health metrics for Open Source

wg-securing-critical-projects

Helping allocate resources to secure the critical open source projects we all depend on.

wg-best-practices-os-developers

The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.

tetragon

eBPF-based Security Observability and Runtime Enforcement

secrets-patterns-db

Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

tag-security

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

slsa-github-generator

Language-agnostic SLSA provenance generation for Github Actions

wg-supply-chain-integrity

Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the code they maintain, produce and use.

ebpf-instrumentation

Demo for "Auto-instrumentation of Prometheus For RED Monitoring With eBPF" talk performed in Q4 2021

ebpf-exporter-docker

veewee

Easing the building of vagrant boxes

podman

Podman: A tool for managing OCI containers and pods.

CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

crc

CRC is a tool to help you run containers. It manages a local OpenShift 4.x cluster, Microshift or a Podman VM optimized for testing and development purposes