Open Source Cloud Native Application Protection Platform (CNAPP)
-
Updated
Jun 9, 2024 - TypeScript
Open Source Cloud Native Application Protection Platform (CNAPP)
Vulnerability assessment and penetration testing automation and reporting platform for teams.
🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Find and verify secrets
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework
Lucas Mello's dotfiles
🛡️ Make your web services secure by default !
SecObserve is an open source vulnerability management system for software development and cloud environments. It supports a variety of open source vulnerability scanners and integrates easily into CI/CD pipelines.
Attack surface detector that identifies endpoints by static analysis
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal.
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.
boostsecurityio/poutine
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."