500 Open source projects that are alternatives of or similar to CKS-Exercises-Certified-Kubernetes-Security-Specialist

Playbooks needed to set up an on-premises K3s cluster and securize it

DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

collector for XDR and security posture service

vHive: Open-source framework for serverless experimentation

Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

A policy-enabled authorization plugin for Docker.

unimport is a Go static analysis tool to find unnecessary import aliases.

Fixing static analysis violations in Java source code using Datalog

A Vim plugin for PHPStan - https://github.com/phpstan/phpstan. It calls `phpstan` to do static analysis of your PHP code and displays the errors in Vim's quickfix list.

Kubernetes operator and CLI tool for encrypting and managing Kubernetes secrets

PHPStan extension for webmozart/assert

A Google Secret Manager Provider for Hush

Defund the Police.

Interface to PHPStan (PHP static analyzer)

PHP Static Analysis in Github Actions.

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

Cluster-based cloud mechanism for running SAVE framework

Infer mvn deps from sources

Detect deeply nested if statements in Go source code

Go Taint CHeck Analyser

SonarQube CSS / SCSS / Less Analyzer

BPF Processor for IDA Python

Centralized Configuration and Secrets Management for Ruby and Rails applications.

Scalpel: The Python Static Analysis Framework

ESLint plugin for Scoped CSS in Vue.js

Prometheus Metrics Exporter for Falco output events

Fortran compilers, preprocessors, static analyzers, transpilers, IDEs, build systems, etc.

`mllint` is a command-line utility to evaluate the technical quality of Python Machine Learning (ML) projects by means of static analysis of the project's repository.

Regular expression authors best friend

Nette Framework class reflection extension for PHPStan & framework-specific rules

Parsing CRI JSON logs with Fluent Bit - applies to fluentbit, kubernetes, containerd and cri-o

Automatic test case generation for python and static analysis library

Full set of AppArmor profiles (~ 1400 profiles)

A Golang tool that does static analysis, unit testing, code review and generate code quality report.

Python source code auditing and static analysis on a large scale

DSL language to write seccomp filters

Magic number detector for Go.

Ansible Role - containerd.io

This repository includes cloud security policies for IaC and live resources.

Kubernetes admission webhook for secure, seamless and dynamic handling of secrets in your applications

An R package for static analysis of R code.

An example of a kubernetes cluster appropriate for a startup company

A Github Action for ShellCheck

gqlanalysis makes easy to develop static analysis tools for GraphQL in Go.

Kubernetes Fury OPA. Policy enforcement for your Kubernetes Cluster

Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.

PhpCodeAnalyzer scans codebase and analyzes which non-built-in php extensions used

index and API RBAC for Elasticsearch and Kibana via reverse proxy. DEPRECATED

SonarLint integration for Apache Netbeans

C++ compile-time programming (serialization, reflection, code modification, enum to string, better enum, enum to json, extend or parse language, etc.)

Wanna get DRY? Static analysis tool for detecting repeat code.

The SECBIT Static Analysis Extension to Solidity Compiler

OCCAM: Object Culling and Concretization for Assurance Maximization

A Small C Compiler

Custom sniffs for PHP_CodeSniffer

PHPStan based SQL static analysis and type inference for the database access layer

A free and open-source SonarQube plugin for static code analysis of Scala projects.

CPU-guided performance analyzer for Go

Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification