Stars
A Kubernetes exec auth plugin using the spiffe workload api to get jwts for auth
Wrapper for "docker run" to handle systemd quirks
Static analysis tool to detect potential nil panics in Go code
OpenSSA: Small Specialist Agents based on Domain-Aware Neurosymbolic Agent (DANA) architecture for industrial problem-solving
an ebpf thingie for getting at tcpinfo or web100-like network stats
Linux Process Discovery. C Library, Go bindings, Runtime.
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
Rust implementation of OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
Gather and update all available and newest CVEs with their PoC.
It is my belief that you, the postgraduate students and job-seekers for whom the book is primarily meant will benefit from reading it; however, it is my hope that even the most experienced research…
Kubernetes Security Training Platform - focusing on security mitigation
An interactive approach to drafting FAQs to be posted on the SBOM website
An open-source runtime for composable workflows. Great for AI agents and CI/CD.
Financial data platform for analysts, quants and AI agents.
Envoy External Authorization API Bridge To SPIFFE Workload API
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Ultra simple docker layer caching of both source and binaries for Go
dl is a super simple tool for using go run to download files via http
📞📱☎️Public info for the CNCF Telecom User Group
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
📞📱☎️📡🌐 Cloud Native Telecom Initiative (CNTi) Test Suite is a tool to check for and provide feedback on the use of K8s + cloud native best practices in networking applications and platforms