Lynis是基于UNIX的系统的安全审计,主要目标是测试安全防御并提供进一步系统强化的提示
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...
翻译 - Prowler 是一种安全工具,用于执行 AWS 安全最佳实践评估、审计、事件响应、持续监控、强化和取证准备。它包含此处列出的所有 CIS 控件 https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf 以及 100 多项有助于满足 GDPR、HIPAA 和其他安全要求的额外检查。
OPA 是一种开源的通用策略引擎,主要为了解决云原生应用的访问控制、授权和策略
immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
翻译 - immudb是用于系统和应用程序的轻量级高速不可变数据库
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
翻译 - Bridgecrew使用Checkov防止在Terraform,Cloudformation,Kubernetes,无服务器框架和其他基础架构代码语言的构建期间对云进行错误配置。
Tfsec is now part of Trivy
翻译 - 🔒🌍为您的Terraform代码提供静态分析支持的安全扫描器
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
翻译 - 用于云安全性,成本优化和治理的规则引擎,yaml中的DSL,用于对资源进行查询,过滤和采取措施的策略
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
翻译 - OSSEC是基于开源主机的入侵检测系统,它执行日志分析,文件完整性检查,策略监视,rootkit检测,实时警报和主动响应。
InSpec: Auditing and Testing Framework
翻译 - InSpec:审核和测试框架
A FAST Kubernetes manifests validator, with support for Custom Resources!
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
macOS Security Compliance Project
翻译 - macOS安全合规项目
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTra...
翻译 - LunaSec - 安全性和合规性 SDK,可阻止软件中的数据泄漏。只需几行代码,LunaSec 就在您的堆栈中添加了零信任架构、独特的每记录加密以及针对 XSS、SQL 注入和 RCE 等常见安全问题的保护。在这里现场试用:https://app.lunasec.dev
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/co...
Secure SDK/vault for personal records/PII built to comply with GDPR
翻译 - 安全存储符合GDPR要求的个人记录
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and we...
翻译 - FOSSology是一个开源许可证合规性软件系统和工具包。作为工具包,您可以从命令行运行许可证,版权和导出控制扫描。作为系统,提供了数据库和Web ui,以为您提供合规性工作流程。许可证,版权和导出扫描程序是工作流中使用的工具。
Wazuh - Docker containers
翻译 - Wazuh - Docker containers