posteeSimple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.
Stars: ✭ 160 (+400%)
ggshieldFind and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
Stars: ✭ 1,272 (+3875%)
opa-kafka-pluginOpen Policy Agent (OPA) plug-in for Kafka authorization
Stars: ✭ 46 (+43.75%)
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: ✭ 2,687 (+8296.88%)
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (+68.75%)
ccheckA command line tool for validating Kubernetes configs with rego
Stars: ✭ 63 (+96.88%)
TrivyScanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+30128.13%)
devops-infra-demoGrowing repository of Infrastructure as Code demos (initially created for DevOps Wall Street)
Stars: ✭ 31 (-3.12%)
big-bangBig Bang is a declarative, continuous delivery tool for core DoD hardened and approved packages into a Kubernetes cluster.
Stars: ✭ 55 (+71.88%)
pre-commit-opaPre-commit git hooks for Open Policy Agent (OPA) and Rego development
Stars: ✭ 53 (+65.63%)
opalPolicy and data administration, distribution, and real-time updates on top of Open Policy Agent
Stars: ✭ 459 (+1334.38%)
OpaAn open source, general-purpose policy engine.
Stars: ✭ 5,939 (+18459.38%)
opa-docker-authzA policy-enabled authorization plugin for Docker.
Stars: ✭ 67 (+109.38%)
terraform-aws-route53A Terraform module to create a Route53 Domain Name System (DNS) on Amazon Web Services (AWS). https://aws.amazon.com/route53/
Stars: ✭ 39 (+21.88%)
guestbookA simple app with automated infrastructure provisioning, app deployment, and E2E testing
Stars: ✭ 25 (-21.87%)
eks-clusterQuickly spin up an AWS EKS Kubernetes cluster using AWS CloudFormation
Stars: ✭ 41 (+28.13%)
nmap-formatterA tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.
Stars: ✭ 129 (+303.13%)
DongTai-agent-javaJava Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
Stars: ✭ 592 (+1750%)
runiacRun IaC Anywhere With Ease
Stars: ✭ 18 (-43.75%)
pipelineRDA chain of responsability pattern implementation in .NET that supports retry policy, sync and async steps, rollback, pipeline recovery by cache and visual documentation using diagrams.
Stars: ✭ 19 (-40.62%)
tfutfu is a terraform helper to update the providers.
Stars: ✭ 13 (-59.37%)
gitavscanGit Anti-Virus Scan Action - Detect trojans, viruses, malware & other malicious threats.
Stars: ✭ 23 (-28.12%)
awesome-policy-as-codeA curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
Stars: ✭ 121 (+278.13%)
fury-kubernetes-opaKubernetes Fury OPA. Policy enforcement for your Kubernetes Cluster
Stars: ✭ 34 (+6.25%)
vimana-frameworkVimana is an experimental security framework that aims to provide resources for auditing Python web applications.
Stars: ✭ 47 (+46.88%)
driftctlDetect, track and alert on infrastructure drift
Stars: ✭ 2,020 (+6212.5%)
havengrc☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬
Stars: ✭ 83 (+159.38%)
riskybirdRegular expression authors best friend
Stars: ✭ 48 (+50%)
workshop-devsecopsLa intención de la workshop es mostrar y orientar a los equipos de desarrollo, seguridad y devops (entre otros) que quieran comenzar en DevSecOps, a segurar sus aplicaciones o bien a conocer un poco más acerca del desarrollo seguro, para esto, estaremos otorgando algunos tips e información que fuimos aprendiendo para armar un Pipeline DevSecOps …
Stars: ✭ 14 (-56.25%)
aws-quota-checkerKeep an eye on your AWS quotas before you hit their limits
Stars: ✭ 63 (+96.88%)
dohq-ai-best-practicesВнедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/
Stars: ✭ 22 (-31.25%)
gotfManaging multiple environments with Terraform made easy
Stars: ✭ 25 (-21.87%)
tfquerytfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.
Stars: ✭ 297 (+828.13%)
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
Stars: ✭ 61 (+90.63%)
perimeterator'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
Stars: ✭ 59 (+84.38%)
sixarm mac setupSixArm.com » Mac » Setup notes for new Mac computer and macOS
Stars: ✭ 57 (+78.13%)
privapiDetect Sensitive REST API communication using Deep Neural Networks
Stars: ✭ 42 (+31.25%)
terraform-aws-lambda-functionA Terraform module for deploying and managing Lambda functions on Amazon Web Services (AWS). https://aws.amazon.com/lambda/
Stars: ✭ 37 (+15.63%)
terraform-aws-cognito-user-poolA Terraform module to create and manage Cognito User Pools (Simple and Secure User Sign-Up, Sign-In, and Access Control) on Amazon Web Services (AWS). https://aws.amazon.com/cognito
Stars: ✭ 46 (+43.75%)
runtimean abstraction library on top of OPA
Stars: ✭ 22 (-31.25%)
MixewayHubMixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
Stars: ✭ 80 (+150%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+3840.63%)
devops-101Intro to DevOps from scratch.
Stars: ✭ 57 (+78.13%)
digitalgov.govDigital.gov — Helping the government community deliver better digital services.
Stars: ✭ 167 (+421.88%)
chimera-admissionA Kubernetes dynamic admission controller that uses WebAssembly policies to validate incoming requests
Stars: ✭ 25 (-21.87%)
NietzscheScrap quotes from Goodreads and schedule random tweets.
Stars: ✭ 44 (+37.5%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+981.25%)
Reg2CICreate System Center Configuration manager ConfigItem (CI's) from a .reg (Registry) or a .pol (Policy) file.
Stars: ✭ 74 (+131.25%)
kdtCLI to interact with Kondukto
Stars: ✭ 18 (-43.75%)