A tool for exploring each layer in a docker image

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

Protect and discover secrets using Gitleaks 🔑

Find, verify, and analyze leaked credentials

An entity framework for Go

CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clu…

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernet…

Codespaces but open-source, client-only and unopinionated: Works with any IDE and lets you use any cloud, kubernetes or just localhost docker.

A vulnerability scanner for container images and filesystems

A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig – [✩Star] if you're u…

A self hosted virtual browser that runs in docker and uses WebRTC.

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

⛑ Automated developer-oriented status page

Dendrite is a second-generation Matrix homeserver written in Go!

Cost monitoring for Kubernetes workloads and cloud costs

CloudNativePG is a comprehensive platform designed to seamlessly manage PostgreSQL databases within Kubernetes environments, covering the entire operational lifecycle from initial deployment to ong…

Lightweight network IP scanner. Can be used to notify about new hosts and monitor host online/offline history

Descheduler for Kubernetes

Selfhosted alternative to 12ft.io. and 1ft.io bypass paywalls with a proxy ladder and remove CORS headers from any URL

DevSpace - The Fastest Developer Tool for Kubernetes ⚡ Automate your deployment workflow with DevSpace and develop software directly inside Kubernetes.

Enterprise-ready, GitOps enabled, CloudNative feature management solution

Validation of best practices in your Kubernetes clusters

A cli tool to help discover deprecated apiVersions in Kubernetes

Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.

Multi-tenancy and policy-based framework for Kubernetes.

OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure

GUAC aggregates software security metadata into a high fidelity graph database.