227 Open source projects that are alternatives of or similar to prancer-compliance-test

Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.

Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.

Open Policy Agent (OPA) plug-in for Kafka authorization

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

A command line tool for validating Kubernetes configs with rego

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Growing repository of Infrastructure as Code demos (initially created for DevOps Wall Street)

Big Bang is a declarative, continuous delivery tool for core DoD hardened and approved packages into a Kubernetes cluster.

Python client for Open Policy Agent

Boilerplate example of managing OPA with kustomize

Pre-commit git hooks for Open Policy Agent (OPA) and Rego development

Policy and data administration, distribution, and real-time updates on top of Open Policy Agent

An open source, general-purpose policy engine.

AWS CDK/Cloudformation to deploy a Valheim Server using ECS Fargate!

A policy-enabled authorization plugin for Docker.

A Terraform module to create a Route53 Domain Name System (DNS) on Amazon Web Services (AWS). https://aws.amazon.com/route53/

A simple app with automated infrastructure provisioning, app deployment, and E2E testing

Headless Wordpress - AWS - Easy Setup

Quickly spin up an AWS EKS Kubernetes cluster using AWS CloudFormation

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.

No description or website provided.

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

Run IaC Anywhere With Ease

A chain of responsability pattern implementation in .NET that supports retry policy, sync and async steps, rollback, pipeline recovery by cache and visual documentation using diagrams.

tfu is a terraform helper to update the providers.

Git Anti-Virus Scan Action - Detect trojans, viruses, malware & other malicious threats.

A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.

DevSecOps Toolchain

Reusable Terraform modules

Demoing Kubernetes/AKS features

Kubernetes Fury OPA. Policy enforcement for your Kubernetes Cluster

Vimana is an experimental security framework that aims to provide resources for auditing Python web applications.

Detect, track and alert on infrastructure drift

☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬

Regular expression authors best friend

La intención de la workshop es mostrar y orientar a los equipos de desarrollo, seguridad y devops (entre otros) que quieran comenzar en DevSecOps, a segurar sus aplicaciones o bien a conocer un poco más acerca del desarrollo seguro, para esto, estaremos otorgando algunos tips e información que fuimos aprendiendo para armar un Pipeline DevSecOps …

Keep an eye on your AWS quotas before you hit their limits

Внедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/

Managing multiple environments with Terraform made easy

tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

A schema and set of tools for using SQL to query cloud infrastructure.

Terraform Modules by Peak

'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.

SixArm.com » Mac » Setup notes for new Mac computer and macOS

Detect Sensitive REST API communication using Deep Neural Networks

A Terraform module for deploying and managing Lambda functions on Amazon Web Services (AWS). https://aws.amazon.com/lambda/

A Terraform module to create and manage Cognito User Pools (Simple and Secure User Sign-Up, Sign-In, and Access Control) on Amazon Web Services (AWS). https://aws.amazon.com/cognito

Terraform provider for automating Cisco ACI enabled networks

an abstraction library on top of OPA

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Intro to DevOps from scratch.

Digital.gov — Helping the government community deliver better digital services.

Terraform provider for the Checkly monitoring service

A Kubernetes dynamic admission controller that uses WebAssembly policies to validate incoming requests

Scrap quotes from Goodreads and schedule random tweets.

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Create System Center Configuration manager ConfigItem (CI's) from a .reg (Registry) or a .pol (Policy) file.

CLI to interact with Kondukto