Check system packages for known CVEs

Thibault NORMAND - Cyber Security Solution Architect - Toulouse, France

List file paths from docker image's layers

Monitor Kubernetes Clusters for authorisation tokens being passed in clear-text.

Backend vulscan tool: scan sql injection

Automatically start a Detectify scan on your assets before you ship them to production.

🔭 Kubernetes out-cluster vulnerability scanner

Cleanup tool for GItLab Server

Defend against high-risk workloads and gain visibility into vulnerable containers running on Kubernetes

preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.

kube-scan: Octarine k8s cluster risk assessment tool

Kubernetes-native security toolkit

Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.

An open source trusted cloud native registry project that stores, signs, and scans content.

Automatize CI/CD com Jenkins e Slack para acelerar desenvolvimento de software e incluir DevSecOps.

Cloud-Army-Secret-Injector read secrets from GCP Secret Manager and automatically injects the values as environment variables to the application subprocess.

Democratizing Administration, Orchestration, Monitoring & Observability technology for cloud-native. Make DevSecOps orchestration & integrations easy.

Atomic ThreatHunter is a tool suite built around Nuclei used to continuosuly get the newly discovered vulnerabilities in your applications.

By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps to developers.