Security

Container signing, verification, and storage in OCI registries. Keyless signing with OIDC. Part of the Sigstore project.

Firmware analysis tool. Extract file systems, find embedded files, and analyze binary images. Essential for IoT security research.

Embedded firmware analyzer. Automated security analysis for Linux-based firmware. Vulnerability detection, binary analysis, and reporting.

Open-source SAST tool. Orchestrates multiple security scanners. Supports 15+ languages. Dashboard and CI/CD integration.

Keeping Infrastructure as Code Secure. Scans Terraform, Docker, Kubernetes, Ansible, CloudFormation for misconfigurations.

Static analysis for data privacy and security. Finds sensitive data flows in code. GDPR, PCI-DSS compliance checking.

Audit Python environments and dependencies for known vulnerabilities. Uses PyPI and OSV databases. pip and requirements.txt support.

eBPF-based security observability and runtime enforcement by Cilium. Process, file, network visibility without kernel modules.

eBPF-based runtime security and forensics tool by Aqua Security. Trace system events, detect attacks in real-time.

System exploration and troubleshooting tool. Deep system visibility with container support. Like strace + tcpdump + htop combined.

High-level tracing language for Linux. Dynamic tracing with eBPF. AWK-like syntax for kernel and userspace probes.

Open-source WAF engine. Works with Apache, Nginx, and IIS. OWASP Core Rule Set provides comprehensive attack detection.

Modern WAF written in Go. Compatible with ModSecurity/OWASP CRS rules. Embeddable, fast, and cloud-native.

Protects hosts from brute-force attacks. Monitors logs and blocks attacking IPs using firewall rules. Supports SSH, FTP, SMTP.

Kubernetes best practices validation. Checks deployments for security, reliability, and efficiency. Dashboard and CLI modes.

Kubernetes admission controller using Open Policy Agent. Enforce custom policies on Kubernetes resources at creation time.

Cloud-native security and compliance scanner. Scan infrastructure, Kubernetes, and cloud resources. Policy as code with MQL.

Open-source web application attack and audit framework. Identifies 200+ vulnerabilities including SQL injection, XSS, and CSRF.

Web path discovery tool. Brute-force directories and files on web servers. Multi-threaded with recursive scanning.

Fast, simple content discovery tool written in Rust. Forced browsing with recursion, filtering, and auto-calibration.

General-purpose policy engine. Enforce policies across microservices, Kubernetes, CI/CD, and API gateways using Rego language.

Infrastructure testing framework. Write compliance rules as code, test servers, and generate audit reports. CIS benchmark support.

SUID sandbox for Linux. Restrict applications using Linux namespaces, seccomp-bpf, and capabilities. Easy-to-use security layer.

Linux audit daemon. Records system calls, file access, authentication events. Foundation for compliance and security monitoring.