An agent to enable remote management of your EC2 instances, on-premises servers, or virtual machines (VMs).

NIST SP 800-53 content and other OSCAL content examples

CodeScanAI is an open source tool that utilizes powerful AI models (OpenAI, Gemini, and even self-hosted servers) to scan your codebase for possible security vulnerabilities.

An API and client for managing STIG assessments

Cloud Native Runtime Security

OpenProject is the leading open source project management software.

Recipes to deploy OpenProject with Docker, Docker Compose, Kubernetes, etc.

TLS/SSL and crypto library

The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security…

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Dockerfile and scripts to build a container image that facilitates generating and uploading Software Bill of Materials (SBOM) to sbom.sh utilizing various open-source SBOM tools such as Trivy, Gryp…

A vulnerability scanner for container images and filesystems

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

The ZAP by Checkmarx Core project

An API and client for managing STIG assessments

Open Source Identity and Access Management For Modern Applications and Services

Nikto web server scanner

The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.

AWS zero to hero repo for devops engineers to learn AWS in 30 Days. This repo includes projects, presentations, interview questions and real time examples.

📚 Freely available programming books