Projects in Awesome Lists tagged with container-security
A curated list of projects in awesome lists tagged with container-security .
https://github.com/wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
cloud-security compliance configuration-assessement container-security cybersecurity file-integrity-monitoring incident-response infosec log-analysis malware-detection pci-dss security security-audit security-automation security-hardening security-tools siem vulnerability-detection wazuh xdr
Last synced: 14 May 2025
https://github.com/madhuakula/kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
blueteam cloud-native cloud-security cloudsecurity container container-security devsecops docker hacking infrastructure k8s kubernetes kubernetes-goat kubernetes-security owasp pentesting redteam security vulnerable-app
Last synced: 13 May 2025
https://github.com/cdk-team/cdk
📦 Make security testing of K8s, Docker, and Containerd easier.
blackhat cloud-native cloud-native-security container container-escape container-security docker exploits hacktools hitb k8s k8s-penetration-toolkit kernel-exploitation kubernetes kubernetes-security linux penetration penetration-testing-tools privilege-escalation vulnerabilities
Last synced: 15 May 2025
https://github.com/cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
blackhat cloud-native cloud-native-security container container-escape container-security docker exploits hacktools hitb k8s k8s-penetration-toolkit kernel-exploitation kubernetes kubernetes-security linux penetration penetration-testing-tools privilege-escalation vulnerabilities
Last synced: 04 Apr 2025
https://github.com/chaitin/veinmind-tools
veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集
cloud-native cloud-security container-security containerd docker image-security security
Last synced: 15 May 2025
https://github.com/project-copacetic/copacetic
🧵 CLI tool for directly patching container images!
cncf compliance container-image container-security containers devsecops docker hacktoberfest patching security security-tools trivy vulnerabilities vulnerability vulnerability-management
Last synced: 01 Apr 2025
https://github.com/Metarget/metarget
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
cloud-native cloud-native-security container container-escape container-security kernel-exploitation kubernetes kubernetes-security privilege-escalation target vulnerabilities vulnerable-infrastructure vulnerable-infrastructures vulnerable-scenes
Last synced: 30 Apr 2025
https://github.com/metarget/metarget
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
cloud-native cloud-native-security container container-escape container-security kernel-exploitation kubernetes kubernetes-security privilege-escalation target vulnerabilities vulnerable-infrastructure vulnerable-infrastructures vulnerable-scenes
Last synced: 13 Apr 2025
https://github.com/vchinnipilli/kubestriker
A Blazing fast Security Auditing tool for Kubernetes
aks automation aws azure container-security containers devops docker docker-security eks gke informationsecurity infosec kubernetes kubernetes-security security security-audit security-tools
Last synced: 30 Mar 2025
https://github.com/opengovern/opensecurity
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.
audit cloud-security compliance container-security cspm devsecops optimization oss policy-as-code security security-auditing-tool
Last synced: 15 May 2025
https://github.com/Vinum-Security/kubernetes-security-checklist
Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)
checklist cloud-native-security container-security devsecops kubernetes kubernetes-security requirments security
Last synced: 29 Apr 2025
https://github.com/sysdiglabs/kube-psp-advisor
Help building an adaptive and fine-grained pod security policy
container-security kubernetes psp security-tools
Last synced: 06 Apr 2025
https://github.com/Metarget/k0otkit
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
container-escape container-injection container-security fileless-attack hack-k8s k8s kubernetes-security post-penetration reverse-shell
Last synced: 29 Apr 2025
https://github.com/metarget/k0otkit
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
container-escape container-injection container-security fileless-attack hack-k8s k8s kubernetes-security post-penetration reverse-shell
Last synced: 13 Apr 2025
https://github.com/jetstack/paranoia
Inspect certificate authorities in container images
certificate-authority container-security containers security tls
Last synced: 09 Apr 2025
https://github.com/r0binak/MTKPI
🧰 Multi Tool Kubernetes Pentest Image
container-security image kubernetes kubernetes-security pentest redteam
Last synced: 11 May 2025
https://github.com/ellerbrock/docker-security-images
:closed_lock_with_key: Docker Container for Penetration Testing & Security
container container-hardening container-security cyber-security cybersecurity devops devsecops docker docker-security infosec it-security penetration-testing pentest pentest-tool pentesting secops
Last synced: 19 Dec 2024
https://github.com/r3drun3/sploitcraft
🏴☠️ Hacking Guides, Demos and Proof-of-Concepts 🥷
ai aws cloud container-security cybersecurity docker hacking hacking-tutorials linux llm-security network-security offensive-security proof-of-concept python redteam tutorials web-vulnerabilities windows
Last synced: 04 Apr 2025
https://github.com/mikeroyal/openshift-guide
OpenShift Guide. Learn about the Red Hat OpenShift Container Platform, Data Science, Code Ready Containers, Podman, Buildah, and Kubernetes.
active-directory btrfs chaos-engineering container-image container-security deploy-tool hybrid-cloud kubernetes kubernetes-cluster kubevirt multicloud openshift openshift-ansible openshift-cluster openshift-dedicated openshift-deployment openshift4 reliability-engineering site-reliability-engineering systemctl
Last synced: 19 Dec 2024
https://github.com/twistlock/whoc
A container image that exfiltrates the underlying container runtime to a remote server
Last synced: 30 Apr 2025
https://github.com/chaitin/libveinmind
一个由长亭自研,直观而可扩展的容器安全 SDK
cloud-native container-security containerd docker golang-library image-security python-library sdk
Last synced: 09 Apr 2025
https://github.com/grantseltzer/karn
Simplifying Seccomp enforcement in containerized or non-containerized apps
container-security containers karn seccomp seccomp-filter security security-hardening security-tools
Last synced: 12 May 2025
https://github.com/falcosecurity-retire/falco-security-workshop
Container Security Workshop covering using Falco on Kubernetes.
cncf container-security containers docker kubernetes kubernetes-security
Last synced: 22 Apr 2025
https://github.com/paulveillard/cybersecurity-container-security
An ongoing & curated collection of awesome frameworks, and most important libraries, videos, learning tutorials , tools and and cool stuff about containers.
container container-image container-management container-orchestration container-security containerd containerization containers containersplatform kubernetes-cluster kubernetes-deployment kubernetes-setup microservices microservices-architecture
Last synced: 10 Apr 2025
https://github.com/0xN3utr0n/Kanis
Advanced threat detection solution for Linux.
antivirus container-security containers docker endpoint-security ids linux malware rootkit threat-detection yara yara-scanner
Last synced: 30 Mar 2025
https://github.com/exploitworks/escalatex
A powerful Linux privilege escalation scanner — a feature-rich and modern alternative to LinPEAS, built for speed, depth, and clarity.
bash blackarch capability-checker container-security ctf-tools cybersecurity ethical-hacking infosec kali-linux kernel-exploitation linux penetration-testing pentesting privilege-escalation redteam security security-tools suidsploit sysadmin vulnerability-scanners
Last synced: 11 Apr 2025
https://github.com/appvia/cosign-keyless-admission-webhook
Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
container-security cosign hacktoberfest kubernetes kubernetes-admission-webhook oidc sigstore
Last synced: 31 Dec 2024
https://github.com/slimdevops/slim-containers
Tutorials, examples, and streaming notes
container-image container-security containers examples golang java node nodejs python ruby-on-rails rust-lang security security-tools tutorial-code
Last synced: 04 Dec 2024
https://github.com/blues-man/vote-app-gitops
A demo of cloud-native Inner Loop and Outer Loop controlling a 2-tier app (Python + Go) with Red Hat OpenShift using Tekton Pipelines, Argo CD GitOps, Eclipse Che aka OpenShift DevSpaces and Quay.io registry
argocd cicd cloud-native container-security devsecops-pipeline gitops kubernetes openshift tekton-pipelines
Last synced: 10 Apr 2025
https://github.com/kube-tarian/sigrun
Sign your artifacts, source code or container images using Sigstore tools, Save the Signatures you want to use, and Validate & Control the deployments to allow only the known Sources based on Signatures, Maintainers & other payloads automatically.
artifacts container-security containers containersecurity cosign fulcio gatekeeper kubernetes kubernetes-security kubernetessecurity opa open-policy-agent pods policy-as-code rekor signature signature-verification sigstore
Last synced: 01 May 2025
https://github.com/stelligent/aws-anchore-engine-scanner
This guide details steps and procedures you can follow to create, launch and implement your own standalone container scanning solution within AWS ecosystem. This approach uses an opensource container scanning tool called Anchore Engine as a proof-of-concept and provides examples of how Anchore integrates with your favorite CI/CD systems orchestration platforms.
anchore-cli anchore-engine aws container-security devops devsecops docker ecs
Last synced: 09 Apr 2025
https://github.com/trendmicro/tmas-scan-action
Vision One Container Security Scan Action
cloud container container-security devsecops github-actions security security-scanner security-tools vulnerability
Last synced: 22 Nov 2024
https://github.com/onzack/kube-scout
Vulnerability Management Tool for Kubernetes and Containers
container-security docker kubernetes
Last synced: 13 Apr 2025
https://github.com/houssemdellai/kubernetes-allowed-registries-policy
Demoing whitelisting Container Registries in Kubernetes using OPA/Gatekeeper policy.
aks-kubernetes-cluster container-registry container-security policy security
Last synced: 15 Mar 2025
https://github.com/darkwizard242/ansible-role-trivy
Ansible role for Trivy. Available on Ansible Galaxy.
ansible ansible-galaxy ansible-role container-security system trivy vulnerability-detection
Last synced: 16 Mar 2025
https://github.com/sysdiglabs/security-playground
This is a sample application which runs an HTTP web server and allows to read and write files and exec commands
container-security kubernetes security-tools
Last synced: 22 Nov 2024
https://github.com/veilair/docker-development
An ongoing curated list of awesome frameworks, important books, articles, talks, libraries, learning tutorials, best practices and technical resources about Docke
container container-image container-linux container-management container-runtime container-security containerization containers docker docker-apps docker-build docker-cloud docker-compose docker-container docker-hub docker-image docker-registry
Last synced: 28 Feb 2025
https://github.com/felipecosta09/c1cs
Trend Micro Cloud One Container Security Scan Action
cloud container container-security github-actions security security-scanner security-tools vulnerability
Last synced: 02 Apr 2025
https://github.com/sysdiglabs/secure-image-scanning
Image scanning with Sysdig Secure
container-security security-tools
Last synced: 16 Mar 2025
https://github.com/911abaddon/securityheaderx
Instant web security analysis: detect vulnerabilities in HTTP headers, TLS, and CORS with a single scan
api-security appsec cloud-security container-security cybersecurity devsecops http-headers javascript nodejs owasp penetration-testing privacy security security-headers security-tools web-security
Last synced: 07 May 2025
https://github.com/erhardtconsulting/images
Rootless Docker Images for Secure Kubernetes Deployments
container-security containerization devops docker docker-containers docker-image kubernetes rootless rootless-container rootless-docker secure-deployment
Last synced: 26 Feb 2025
https://github.com/meysam81/build-docker
A shorthand GitHub Action for building Docker and pushing to ghcr.io and other repositories. An smaller alternative to combining qemu and other steps.
automation buildx ci-cd composite-action container-image container-registry container-security devops docker docker-build docker-push docker-scout dockerhub ghcr github-action github-actions kubescape multi-platform security-scanning vulnerability-scanning
Last synced: 11 Apr 2025
https://github.com/anchore/circleci-orbs
Repo for all Anchore circleci orb source code
anchore anchore-engine circleci-orb circleci-orbs container-security docker image-scanning vulnerability-scanner
Last synced: 23 Apr 2025
https://github.com/lawndoc/seccomp-ci-demo
Automate seccomp filter generation in your CI pipeline
ci container-security containers devops devsecops ebpf linux seccomp security security-automation syscalls
Last synced: 01 Apr 2025
