thojkooi

API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

infisical

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

awx

AWX provides a web-based user interface, REST API, and task engine built on top of Ansible. It is one of the upstream projects for Red Hat Ansible Automation Platform.

bytebase

The GitHub/GitLab for database DevOps. World's most advanced database DevOps and CI/CD for Developer, DBA and Platform Engineering teams.

wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

netmaker

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

ModSecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

kopia

Cross-platform backup tool for Windows, macOS & Linux with fast, incremental backups, client-side end-to-end encryption, compression and data deduplication. CLI and GUI included.

firezone

Enterprise-ready zero-trust access platform built on WireGuard®.

ansible-collection-hardening

This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

IntelOwl

IntelOwl: manage your Threat Intelligence at scale

retina

eBPF distributed networking observability tool for Kubernetes

snort3

Snort++

coraza

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

mist-ce

Mist is an open source, multicloud management platform

yopass

Secure sharing of secrets, passwords and files

ipsum

Daily feed of bad IPs (with blacklist hit scores)

flightsim

A utility to safely generate malicious network traffic patterns and evaluate controls.

stackrox

The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.

scheduler-plugins

Repository for out-of-tree scheduler plugins based on scheduler framework.

kftray

kubectl port-forward on steroids 🦀 Easily manage and share multiple k8s port forwards configurations from the menu bar (GUI) or via terminal (TUI)

wazuh-docker

Wazuh - Docker containers

walrus

Walrus is an open-source application management platform based on IaC tools including OpenTofu, Terraform and others. It helps platform engineers build golden paths for developers and empowers developers with self-service capabilities.

teler-waf

teler-waf is a Go HTTP middleware that protects local web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, botnets, unwanted crawlers, and brute force attacks.

machine-controller

k8s-cleaner

Cleaner is a Kubernetes controller that identifies unused or unhealthy resources, helping you maintain a streamlined and efficient Kubernetes cluster. It provides flexible scheduling, label filtering, Lua-based selection criteria, resource removal or update and notifications via Slack, Webex and Discord. it can also automate clusters operations.

keycloakify-starter

🔑 Keycloakify Projects Starter Template

cluster-api-ipam-provider-in-cluster

An IPAM provider for Cluster API that manages pools of IP addresses using Kubernetes resources.

teler-proxy

🔐 teler Proxy enabling seamless integration with teler WAF 🛡️ to protect locally running web service against a web-based attacks. 🥷

monitoring

KubeVirt monitoring dashboards