DevOps · security Tools

osquery

github

SQL powered operating system instrumentation, monitoring, and analytics.

docker.labs

github

This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome.

kubescape

github

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

sigma

github

Main Sigma Rule Repository

bunkerweb

github

🛡️ Open-source and next-generation Web Application Firewall (WAF)

falco

github

Cloud Native Runtime Security

checkov

github

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

kyverno

github

Unified Policy as Code

ufw-docker

github

To fix the Docker and UFW security flaw without disabling iptables

datree

github

Prevent Kubernetes misconfigurations from reaching production (again 😤 )! From code to cloud, Datree provides an E2E policy enforcement solution to run automatic checks for rule violations. See our docs: https://hub.datree.io

kubernetes-network-policy-recipes

github

Example recipes for Kubernetes Network Policies that you can just copy paste

guide

github

Kubernetes clusters for the hobbyist.

kubernetes-goat

github

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

terrascan

github

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

libreddit

github

Private front-end for Reddit

pouch

github

An Efficient Enterprise-class Container Engine

tetragon

github

eBPF-based Security Observability and Runtime Enforcement

aya

github

Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

tracee

github

Linux Runtime Security and Forensics using eBPF

cerbos

github

Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.

gatekeeper

github

🐊 Policy Controller for Kubernetes

hubble

github

Hubble - Network, Service & Security Observability for Kubernetes using eBPF

metorial

github

Connect any AI model to 600+ integrations; powered by MCP 📡 🚀

shynet

github

Modern, privacy-friendly, and detailed web analytics that works without cookies or JS.