https://github.com/wazuh/wazuh | wazuh/wazuh: Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
https://github.com/nucleuscloud/neosync?rdt_cid=4751547372092561632 | nucleuscloud/neosync: Open source data anonymization and synthetic data orchestration for developers. Create high fidelity synthetic data and sync it across your environments.
https://github.com/in-toto/in-toto | in-toto/in-toto: in-toto is a framework to protect supply chain integrity.
https://github.com/kubescape/kubescape | kubescape/kubescape: Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
https://github.com/notaryproject/notation | notaryproject/notation: A CLI tool to sign and verify artifacts
https://github.com/hashicorp/boundary | hashicorp/boundary: Boundary enables identity-based access management for dynamic infrastructure.
https://github.com/anchore/syft | anchore/syft: CLI tool and library for generating a Software Bill of Materials from container images and filesystems
https://github.com/openclarity/apiclarity | openclarity/apiclarity: An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
https://github.com/open-policy-agent/opa | open-policy-agent/opa: Open Policy Agent (OPA) is an open source, general-purpose policy engine.
https://github.com/parallaxsecond/parsec | parallaxsecond/parsec: Platform AbstRaction for SECurity service
https://github.com/opcr-io/policy | opcr-io/policy: CLI for building OPA policies into OCI images
https://github.com/permitio/opal | permitio/opal: Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
https://github.com/aquasecurity/trivy | aquasecurity/trivy: Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
https://github.com/cilium/tetragon | cilium/tetragon: eBPF-based Security Observability and Runtime Enforcement
https://github.com/gravitational/teleport | gravitational/teleport: The easiest, and most secure way to access and protect all of your infrastructure.
https://github.com/sigstore/sigstore | sigstore/sigstore: Common go library shared across sigstore services and clients
https://github.com/normation/rudder | Normation/rudder: Rudder is a configuration and security automation platform. Manage your Cloud, hybrid or on-premises infrastructure in a simple, scalable and dynamic way.
https://github.com/paralus/paralus | paralus/paralus: All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.
https://github.com/openfga/openfga | openfga/openfga: A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar
https://github.com/matanolabs/matano | matanolabs/matano: Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
https://github.com/stackrox/kube-linter | stackrox/kube-linter: KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.
https://github.com/aquasecurity/kube-bench | aquasecurity/kube-bench: Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
https://github.com/hexa-org/policy-orchestrator | hexa-org/policy-orchestrator: Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
https://github.com/FairwindsOps/goldilocks | FairwindsOps/goldilocks: Get your resource requests "Just Right"
https://github.com/fossas/fossa-cli | fossas/fossa-cli: Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Language-agnostic; integrates with 20+ build systems.
https://github.com/dexidp/dex | dexidp/dex: OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
https://github.com/keycloak/keycloak | keycloak/keycloak: Open Source Identity and Access Management For Modern Applications and Services
https://github.com/cloud-custodian/cloud-custodian | cloud-custodian/cloud-custodian: Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
https://github.com/apolloconfig/apollo | apolloconfig/apollo: Apollo is a reliable configuration management system suitable for microservice configuration management scenarios.
https://github.com/uber/cadence | uber/cadence: Cadence is a distributed, scalable, durable, and highly available orchestration engine to execute asynchronous long-running business logic in a scalable and resilient way.
https://github.com/buzzfeed/sso | buzzfeed/sso: sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services
https://github.com/cyberark/conjur | cyberark/conjur: CyberArk Conjur automatically secures secrets used by privileged users and machine identities
https://github.com/oauth2-proxy/oauth2-proxy | oauth2-proxy/oauth2-proxy: A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.