Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for golang devsecops
devsecops
x
golang
x
23 search results found
Trivy
⭐
20,160
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Gitleaks
⭐
15,221
Protect and discover secrets using Gitleaks 🔑
Netmaker
⭐
8,629
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
Tfsec
⭐
6,548
Security scanner for your Terraform code
Steampipe
⭐
6,061
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
Dalfox
⭐
3,047
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Secretscanner
⭐
2,900
🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓
Containerssh
⭐
2,504
ContainerSSH: Launch containers on demand
Kics
⭐
1,882
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Bearer
⭐
1,554
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Devsecops
⭐
1,451
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
Yarahunter
⭐
1,225
🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍
Opensca Cli
⭐
964
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by the community.
Kube Scan
⭐
734
kube-scan: Octarine k8s cluster risk assessment tool
Legitify
⭐
689
Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
Copacetic
⭐
679
🧵 CLI tool for directly patching container images using reports from vulnerability scanners
Chain Bench
⭐
674
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
Threagile
⭐
524
Agile Threat Modeling Toolkit
Bomber
⭐
406
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Shisho
⭐
358
Lightweight static analyzer for several programming languages
Netassert
⭐
357
Network security testing for Kubernetes DevSecOps workflows
Yatas
⭐
299
🦉🔎 A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
Chopchop
⭐
245
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
Qodana Action
⭐
232
⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle
Chainloop
⭐
225
Chainloop is an open source software supply chain control plane, a single source of truth for artifacts plus a declarative attestation crafting process.
Stackql
⭐
221
Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework
Allero
⭐
199
By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps to developers.
Postee
⭐
194
Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.
Nmap Formatter
⭐
165
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot) or sqlite. Simply put it's nmap converter.
Qodana Cli
⭐
150
🔧 JetBrains Qodana’s official command line tool
Vet
⭐
144
Tool to achieve policy driven vetting of open source dependencies
Preflight
⭐
141
preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.
Squealer
⭐
140
Telling tales on you for leaking secrets!
Nuvola
⭐
134
Git Alerts
⭐
128
Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
Vals Operator
⭐
105
Kubernetes Operator to sync secrets between different secret backends and Kubernetes
Intercept
⭐
74
INTERCEPT / Policy as Code Auditing / SAST for Code & APIs
Envsecrets
⭐
61
Open-source, end-to-end encrypted CLI-first management of your environment secrets.
Steampipe Postgres Fdw
⭐
57
The Steampipe foreign data wrapper (FDW) is a zero-ETL product that provides Postgres foreign tables which translate queries into API calls to cloud services and APIs. It's bundled with Steampipe and also available as a set of standalone extensions for use in your own Postgres database.
Brainiac
⭐
53
BrainIAC uses static code analysis to analyze IAC code to detect security issues before deployment. This tool can scan for issues like security policy misconfigurations, insecure cloud-based services, and compliance issues.
Tarian
⭐
52
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right threat elimination.
Devsecops Quickstart
⭐
44
Quickly set up a ready to use development environment integrated with a multi-account CI/CD pipeline following security and DevOps best practices
Hungryfox
⭐
43
Monitoring for leaks of sensitive information in git repositories
Steampipe Sqlite
⭐
39
Steampipe SQLite is a zero-ETL engine for SQLite. Virtual tables translate queries into live API calls for cloud services and APIs. Hundreds of plugins with thousands of documented examples.
Kubviz
⭐
34
Visualize Kubernetes & DevSecOps Workflows. Tracks changes/events real-time across your entire K8s clusters, git repos, container registries, SBOM, Vulnerability foot print, etc. , analyzing their effects and providing you with the context you need to troubleshoot efficiently. Get the Observability you need, easily.
Sbomasm
⭐
32
SBOM Assembler - A tool to compose your various sboms into a single sbom.
Nacp
⭐
32
Admission Controller as a proxy for Nomad. Define OPA rules for validation and mutation or plugin remotes
Task Ninja
⭐
31
Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!
Stackql Provider Registry
⭐
21
Registry for cloud and SaaS providers for StackQL, generated from extensions to the providers OpenAPI3 specification
Kdt
⭐
18
CLI to interact with Kondukto
Sbomgr
⭐
14
SBOM Grep - search through SBOMs
Secr
⭐
12
Application security made easy
Kubnerable
⭐
11
🔭 Kubernetes out-cluster vulnerability scanner
Wgnetwork
⭐
10
WGNetwork. Managing a WireGuard®-based Private Secured Network and NFTables Firewall
Watchdog
⭐
9
Watchdog allows to define custom hooks in YAML format. When attached to the official repository, some of these can serve as a way to enforce policy by rejecting certain commits or branches.
Secure Go Backend Clean Architecture
⭐
9
Project that provides DevSecOps best practices on the Go Backend Clean Architecture
Kapparmor
⭐
8
AppArmor profiles loader to deploy and update them through a Kubernetes daemonset
Credential Detector
⭐
7
An easy-to-use and highly configurable tool that allows you to scan projects to detect potentially hard-coded credentials.
Patronus
⭐
7
Swiss Army Knife SAST Toolkit
Vault Plugin Secrets Dockerhub
⭐
7
Plugin for creating dynamic access tokens to DockerHub
Cxray
⭐
6
Tracing security events in container with BPF
Pal
⭐
5
A simple webhook API to run system commands or scripts. Great for triggering deployments or other Linux operational tasks.
Related Searches
Golang Command Line (8,308)
Golang Docker (7,769)
Golang Http (4,290)
Golang Server (4,285)
Javascript Golang (3,372)
Golang Amazon Web Services (3,137)
Golang Database (2,927)
Golang Testing (2,744)
Golang Json (2,652)
Golang Proxy (2,577)
1-23 of 23 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.