kube-bench
A tool to ensure Kubernetes deployments adhere to industry-standard security best practices as outlined in the CIS Kubernetes Benchmark.
Cosign
Code signing and transparency for containers and binaries
Harbor
An open source trusted cloud native registry project that stores, signs, and scans content.
Velociraptor
A powerful tool for endpoint visibility and incident response, leveraging the Velociraptor Query Language (VQL) for customizable data collection.
Dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!
Tracee
A runtime security and forensics tool for Linux environments leveraging eBPF technology.
Vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Clair
Vulnerability Static Analysis for Containers
Trivy
A security scanning solution for cloud and containerized environments.
Prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes.
Kubescape
A security platform for Kubernetes that identifies and remediates misconfigurations, vulnerabilities, and compliance issues.
Snyk CLI
Snyk CLI scans and monitors your projects for security vulnerabilities.