A simple, high-throughput file client for mounting an Amazon S3 bucket as a local file system.

Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

Parse/assemble AWS IAM policy documents and their various quirks

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

Orchestrate GitHub Actions Security

Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.

Pre-Built Vulnerable Environments Based on Docker-Compose

Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!

InSpec: Auditing and Testing Framework

A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)

An FHE compiler for C++

A header only library for binding C++17 classes and functions to Wren, an embeddable programming language

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (BPF-LSM, AppArmor).

Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy

Instant Kubernetes-Native Application Observability

The open source Firebase alternative. Supabase gives you a dedicated Postgres database to build your web, mobile, and AI applications.

Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.

Tool integration platform for Kubernetes

An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

OpenSSF Scorecard - Security health metrics for Open Source

[MAMIP] Monitor AWS Managed IAM Policies Changes

Next-generation ORM for Node.js & TypeScript | PostgreSQL, MySQL, MariaDB, SQL Server, SQLite, MongoDB and CockroachDB

The open source high performance ELT framework powered by Apache Arrow

Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation

Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)

A base docker image built around busybox and glibc, nurtured from source

SigNoz is an open-source observability platform native to OpenTelemetry with logs, traces and metrics in a single application. An open-source alternative to DataDog, NewRelic, etc. 🔥 🖥. 👉 Open sour…

Scans Slack for API tokens, credentials, passwords, and more using YARA rules

Protect and discover secrets using Gitleaks 🔑

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.