A repo to conduct vulnerability enrichment.

Testing TLS/SSL encryption anywhere on any port

DevSecOps, ASPM, Vulnerability Management. All on one platform.

A Trivy plugin that converts JSON report to SonarQube format

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Metasploit Framework

Stella is a tool for automatically creating Helm chart documentation from the chart's metadata.

Linux Runtime Security and Forensics using eBPF

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernet…

Open-source cloud-environment inspector. Supporting AWS, GCP, Azure, and more! Your cloud resources will have nowhere to hide!

Vulnerability Static Analysis for Containers

Backstage is an open framework for building developer portals

GitHub Pages

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

The OpenTF Manifesto expresses concern over HashiCorp's switch of the Terraform license from open-source to the Business Source License (BSL) and calls for the tool's return to a truly open-source …

KBOM - Kubernetes Bill of Materials

Anteon (formerly Ddosify) - Effortless Kubernetes Monitoring and Performance Testing. Available on CLI, Self-Hosted, and Cloud

A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.