regula by fugue

Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes security and compliance using Open Policy Agent/Rego

updated at May 24, 2024, 9:56 a.m.

30 +0

936 +2

106 +0

conftest by open-policy-agent

Write tests against structured configuration data using the Open Policy Agent Rego query language

updated at May 24, 2024, 9:47 a.m.

27 +0

2,803 +5

297 +0

DevSkim by Microsoft

DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.

updated at May 24, 2024, 5:06 a.m.

36 +0

887 +1

109 +0

kube-score by zegl

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.

updated at May 23, 2024, 11:17 p.m.

23 +0

2,615 +6

173 +0

credstash by fugue

A little utility for managing credentials in the cloud

updated at May 23, 2024, 8:06 p.m.

70 +0

2,056 +1

217 +0

kubectl-kubesec by controlplaneio

Security risk analysis for Kubernetes resources

updated at May 23, 2024, 1:19 p.m.

25 +0

504 +1

37 +0

teller by tellerops

Cloud native secrets management for developers - never leave your command line for secrets.

updated at May 23, 2024, 2:57 a.m.

28 +2

2,563 +7

166 +1

ssllabs-scan by ssllabs

A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.

updated at May 22, 2024, 12:34 p.m.

95 +0

1,683 +1

239 +0

phpcs-security-audit by FloeDesignTechnologies

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

updated at May 22, 2024, 8:05 a.m.

44 +0

702 -1

86 +0

flawfinder by david-a-wheeler

a static analysis tool for finding vulnerabilities in C/C++ source code

updated at May 22, 2024, 12:55 a.m.

16 +0

456 +2

81 +0

netz by SpectralOps

Discover internet-wide misconfigurations while drinking coffee

updated at May 20, 2024, 4:24 a.m.

14 +0

376 +1

46 +0

keyscope by SpectralOps

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

updated at May 19, 2024, 9 a.m.

17 +0

377 +0

119 +0

cfn_nag by stelligent

Linting tool for CloudFormation templates

updated at May 18, 2024, 6:54 a.m.

34 +0

1,225 +0

207 +0

scanner-cli by hawkeyesec

A project security/vulnerability/risk scanning tool

updated at May 14, 2024, 7:34 p.m.

19 +0

359 +0

89 +0

puma-scan by pumasecurity

Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.

updated at May 10, 2024, 2:38 p.m.

37 +0

438 +0

81 +0

preflight by SpectralOps

preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.

updated at May 9, 2024, 7:19 a.m.

6 +0

150 +0

45 +0

repo-supervisor by auth0

Scan your code for security misconfiguration, search for passwords and secrets.

updated at May 5, 2024, 6:14 a.m.

33 +0

633 +0

101 +0

automatic-api-attack-tool by imperva

Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.

updated at May 3, 2024, 9:32 p.m.

15 +0

438 +0

91 +0

overlay by os-scar

Overlay is a browser extension helping developers evaluate open source packages before picking them

updated at April 26, 2024, 10:33 p.m.

7 +0

209 +0

17 +0

gauntlt by gauntlt

a ruggedization framework that embodies the principle "be mean to your code"

updated at April 10, 2024, 2:33 a.m.

77 +0

972 +0

190 +0