1843 Open source projects that are alternatives of or similar to Kube Scan

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Identify vulnerabilities in running containers, images, hosts and repositories

GitGuardian Shield GitHub Action - Find exposed credentials in your commits

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

InQL - A Burp Extension for GraphQL Security Testing

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Web Scan Lazy Tools - Python Package

Kubernetes RBAC static Analysis & visualisation tool

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

bootstrap Kubernetes with k3s over SSH < 1 min 🚀

Kubernetes Common Configuration Scoring System

The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

A Blazing fast Security Auditing tool for Kubernetes

Open-Source Security Architecture | 开源安全架构

Simple Golang HTTPS/TLS Examples

Web application vulnerability scanner

All-in-one tool for managing vulnerability reports from AppSec pipelines

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Source Code Security Audit (源代码安全审计)

Leading Open Source Container Attached Storage, built using Cloud Native Architecture, simplifies running Stateful Applications on Kubernetes.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.

【❤️ 互联网最全大厂技术分享PPT 👍🏻 持续更新中！】🍻各大技术交流会、活动资料汇总 ，如 👉QCon👉全球运维技术大会 👉 GDG 👉 全球技术领导力峰会👉大前端大会👉架构师峰会👉敏捷开发DevOps👉OpenResty👉Elastic，欢迎 PR / Issues

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

PolarDB-X Operator is a Kubernetes extension that aims to create and manage PolarDB-X cluster on Kubernetes.

🎖safely* install packages with npm or yarn by auditing them as part of your install process

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A humble, and fast, security-oriented HTTP headers analyzer

Improve your code security by running different security checks/validation in a simple way.

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

awesome-kubernetes-notes 🎉

Kubernetes源码阅读笔记

⚡️ Docker official image for Wallarm Node. API security platform agent.

A simple tool to detect outdated shared libraries

vcluster - Create fully functional virtual Kubernetes clusters - Each vcluster runs inside a namespace of the underlying k8s cluster. It's cheaper than creating separate full-blown clusters and it offers better multi-tenancy and isolation than regular namespaces.

Different utility scripts for pentesting and hacking.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

The Cloud-Native API Gateway

Open Source，High Availability Cluster，based on MySQL

Helps you continuously monitor and fix common security vulnerabilities in your Django application.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

IAST 灰盒扫描工具

Cloud-native and easy-to-use application management platform | 云原生且易用的应用管理平台

Operator allows you to run stream processing logic directly on a Kubernetes cluster

secureCodeBox (SCB) - continuous secure delivery out of the box

a javascript static security analysis tool

kapp is a simple deployment tool focused on the concept of "Kubernetes application" — a set of resources with the same label

Knowledge seeks no man

Web-based Source Code Vulnerability Scanner

ReactJS for your infrastructure. Create and deploy full-stack apps to any infrastructure using the power of React.

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation