SyftCLI tool and library for generating a Software Bill of Materials from container images and filesystems
Stars: ✭ 196 (-45.86%)
ClairVulnerability Static Analysis for Containers
Stars: ✭ 8,356 (+2208.29%)
Anchore EngineA service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Stars: ✭ 1,192 (+229.28%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (+14.09%)
Rkt[Project ended] rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.
Stars: ✭ 8,870 (+2350.28%)
CrunA fast and lightweight fully featured OCI runtime and C library for running containers
Stars: ✭ 990 (+173.48%)
Go DigestCommon digest package used across the container ecosystem
Stars: ✭ 99 (-72.65%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-0.55%)
Runtime SpecOCI Runtime Specification
Stars: ✭ 2,316 (+539.78%)
Runjrunj is an experimental, proof-of-concept OCI-compatible runtime for FreeBSD jails.
Stars: ✭ 211 (-41.71%)
TernTern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBoM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
Stars: ✭ 505 (+39.5%)
Tectonic InstallerInstall a Kubernetes cluster the CoreOS Tectonic Way: HA, self-hosted, RBAC, etcd Operator, and more
Stars: ✭ 599 (+65.47%)
DistributionThe toolkit to pack, ship, store, and deliver container content
Stars: ✭ 6,445 (+1680.39%)
Firecracker Containerdfirecracker-containerd enables containerd to manage containers as Firecracker microVMs
Stars: ✭ 1,130 (+212.15%)
RuncCLI tool for spawning and running containers according to the OCI specification
Stars: ✭ 8,729 (+2311.33%)
GvisorApplication Kernel for Containers
Stars: ✭ 12,012 (+3218.23%)
Orca BuildBuild OCI images from Dockerfiles.
Stars: ✭ 159 (-56.08%)
ContainershipA simple container management platform
Stars: ✭ 241 (-33.43%)
Image SpecOCI Image Format
Stars: ✭ 1,851 (+411.33%)
DockleContainer Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Stars: ✭ 1,713 (+373.2%)
Umociumoci modifies Open Container images
Stars: ✭ 349 (-3.59%)
WpreconWPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.
Stars: ✭ 135 (-62.71%)
Dagdaa tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
Stars: ✭ 820 (+126.52%)
TrivyScanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+2572.1%)
VulnixVulnerability (CVE) scanner for Nix/NixOS.
Stars: ✭ 161 (-55.52%)
RuntimeOCI (Open Containers Initiative) compatible runtime using Virtual Machines
Stars: ✭ 588 (+62.43%)
PouchAn Efficient Enterprise-class Container Engine
Stars: ✭ 4,483 (+1138.4%)
RunvHypervisor-based Runtime for OCI
Stars: ✭ 798 (+120.44%)
Cc Oci RuntimeOCI (Open Containers Initiative) compatible runtime for Intel® Architecture
Stars: ✭ 418 (+15.47%)
ContainerdAn open and reliable container runtime
Stars: ✭ 9,956 (+2650.28%)
Kata ContainersKata Containers version 2.x repository. Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/
Stars: ✭ 1,053 (+190.88%)
scan-cli-pluginDocker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images
Stars: ✭ 135 (-62.71%)
Jib🏗 Build container images for your Java applications.
Stars: ✭ 11,370 (+3040.88%)
IgniteIgnite a Firecracker microVM
Stars: ✭ 1,954 (+439.78%)
Selinuxcommon selinux implementation
Stars: ✭ 107 (-70.44%)
BoxA mruby-based Builder for Docker Images
Stars: ✭ 236 (-34.81%)
RuntimeKata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers).
Stars: ✭ 2,103 (+480.94%)
GowaptGo Web Application Penetration Test
Stars: ✭ 300 (-17.13%)
ThoronThoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.
Stars: ✭ 87 (-75.97%)
In Spectre MeltdownThis tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
Stars: ✭ 86 (-76.24%)
ArissploitArissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
Stars: ✭ 114 (-68.51%)
Hacker ezinesA collection of electronic hacker magazines carefully curated over the years from multiple sources
Stars: ✭ 72 (-80.11%)
BrakemanA static analysis security vulnerability scanner for Ruby on Rails applications
Stars: ✭ 6,281 (+1635.08%)
HuskyciPerforming security tests inside your CI
Stars: ✭ 398 (+9.94%)
clair-cicdMaking CoreOS' Clair easily work in CI/CD pipelines
Stars: ✭ 27 (-92.54%)
JaadasJoint Advanced Defect assEsment for android applications
Stars: ✭ 304 (-16.02%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-42.82%)
HorusecHorusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Stars: ✭ 311 (-14.09%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-48.34%)
DockerfileDockerfile best-practices for writing production-worthy Docker images.
Stars: ✭ 3,506 (+868.51%)
Buildkitconcurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
Stars: ✭ 4,537 (+1153.31%)
Fileboyfileboy,文件变更监听通知工具,使用 Go 编写。Fileboy, File Change Monitoring Notification Tool, written with Go.
Stars: ✭ 345 (-4.7%)
TsuruOpen source and extensible Platform as a Service (PaaS).
Stars: ✭ 3,761 (+938.95%)
RbndrSimple DNS Rebinding Service
Stars: ✭ 343 (-5.25%)
CodecompassCodeCompass is a software comprehension tool for large scale software written in C/C++ and Java
Stars: ✭ 342 (-5.52%)