#Container-security

Showing 27 of 27 repositories tagged #container-security, ranked by stars

wazuh
wazuh
wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Score
100
โ˜… 16.1k โ‘‚ 2.4k +4/day
C++
madhuakula
madhuakula
kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground ๐Ÿš€

Score
93
โ˜… 5.7k โ‘‚ 1.0k +7/day
HTML
cdk-team
cdk-team
CDK

๐Ÿ“ฆ Make security testing of K8s, Docker, and Containerd easier.

Score
0
โ˜… 4.7k โ‘‚ 604 +3/day
Go
project-copacetic
project-copacetic
copacetic

๐Ÿงต CLI tool for directly patching container images!

Score
87
โ˜… 1.7k โ‘‚ 121 +14/day
Go
chaitin
chaitin
veinmind-tools

veinmind-tools ๆ˜ฏ็”ฑ้•ฟไบญ็ง‘ๆŠ€่‡ช็ ”๏ผŒๅŸบไบŽ veinmind-sdk ๆ‰“้€ ็š„ๅฎนๅ™จๅฎ‰ๅ…จๅทฅๅ…ท้›†

Score
67
โ˜… 1.6k โ‘‚ 186 +1/day
Go
Metarget
Metarget
metarget

Metarget is a framework providing automatic constructions of vulnerable infrastructures.

Score
100
โ˜… 1.4k โ‘‚ 202 +1/day
Python
vchinnipilli
vchinnipilli
kubestriker

A Blazing fast Security Auditing tool for Kubernetes

Score
60
โ˜… 1.0k โ‘‚ 109 โ€”
Python
opengovern
opengovern
opensecurity

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

Score
47
โ˜… 716 โ‘‚ 29 โ€”
TypeScript
mensfeld
mensfeld
code-on-incus

Give each AI agent its own isolated machine with root, Docker, and systemd. Active defense detects and stops threats automatically.

Score
80
โ˜… 585 โ‘‚ 48 โ€”
Python
Vinum-Security
Vinum-Security
kubernetes-security-checklist

Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)

Score
40
โ˜… 488 โ‘‚ 92 โ€”
sysdiglabs
sysdiglabs
kube-psp-advisor

Help building an adaptive and fine-grained pod security policy

Score
62
โ˜… 328 โ‘‚ 41 โ€”
Go
Metarget
Metarget
awesome-cloud-native-security

awesome resources about cloud native security ๐Ÿฟ

Score
75
โ˜… 328 โ‘‚ 57 โ€”
ellerbrock
ellerbrock
docker-security-images

:closed_lock_with_key: Docker Container for Penetration Testing & Security

Score
20
โ˜… 241 โ‘‚ 35 โ€”
R3DRUN3
R3DRUN3
sploitcraft

๐Ÿดโ€โ˜ ๏ธ Hacking Guides, Demos and Proof-of-Concepts ๐Ÿฅท

Score
27
โ˜… 223 โ‘‚ 27 โ€”
Jupyter Notebook
chaitin
chaitin
libveinmind

ไธ€ไธช็”ฑ้•ฟไบญ่‡ช็ ”๏ผŒ็›ด่ง‚่€Œๅฏๆ‰ฉๅฑ•็š„ๅฎนๅ™จๅฎ‰ๅ…จ SDK

Score
38
โ˜… 118 โ‘‚ 18 โ€”
Go
raoulx24
raoulx24
trivy-operator-dashboard

Trivy Operator Dashboard: A comprehensive tool for Trivy Operator. Offers various dashboards and interactive pages where you can browse and inspect Trivy Reports. Built with C#, .NET 10 (backend), Angular 21, and Node.js 24 (frontend).

Score
88
โ˜… 99 โ‘‚ 7 โ€”
C#
CloudDefenseAI
CloudDefenseAI
falco_extended_rules

Curating Falco rules with MITRE ATT&CK Matrix

Score
0
โ˜… 87 โ‘‚ 16 โ€”
Python
kajogo777
kajogo777
the-agent-sandbox-taxonomy

An open taxonomy and scoring framework for evaluating AI agent sandboxes: 7 defense layers, 7 threat categories, 3 evaluation dimensions, 27 "sandboxes" scored.

Score
53
โ˜… 86 โ‘‚ 7 +1/day
Go
inno-devops-labs
inno-devops-labs
DevSecOps-Intro

๐Ÿš€ DevSecOps intro elective โ€” 10 hands-on labs + 2 bonus hardening OWASP Juice Shop: threat modeling (STRIDE/Threagile), signed commits & secret scanning, SBOM/SCA, SAST + DAST, IaC security (Checkov/KICS), container & supply-chain hardening (Trivy, Cosign), runtime detection with Falco, and DefectDojo vuln management.

Score
73
โ˜… 81 โ‘‚ 135 โ€”
Shell
sandbox-utils
sandbox-utils
sandbox-run

๐Ÿ”’๐Ÿง Run command in a secure OS-native sandbox (0 deps)

Score
33
โ˜… 79 โ‘‚ 5 โ€”
Shell
brant-ruan
brant-ruan
awesome-container-escape

collections of container escape techniques ๐Ÿฟ

Score
12
โ˜… 72 โ‘‚ 12 โ€”
lightspin-tech
lightspin-tech
eks-creation-engine

The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.

Score
0
โ˜… 41 โ‘‚ 12 โ€”
Python
hackersatyamrastogi
hackersatyamrastogi
pentesting-cyber-mcp

๐Ÿ” 50+ MCP Security Servers for AI-Powered Pentesting | Integrate Nmap, Burp Suite, Nuclei, Shodan, BloodHound, Semgrep, Trivy | Model Context Protocol for Cybersecurity

Score
13
โ˜… 23 โ‘‚ 11 +2/day
JavaScript
slimdevops
slimdevops
slim-containers

Tutorials, examples, and streaming notes

Score
0
โ˜… 21 โ‘‚ 8 โ€”
Python
Mutasem-mk4
Mutasem-mk4
procscope

Zero-overhead eBPF process tracer for Linux malware triage and incident response. Traces syscalls, network, and file events per-process without strace overhead.

Score
7
โ˜… 20 โ‘‚ 0 +1/day
C
ErenAri
ErenAri
Aegis-BPF

Deterministic Linux runtime enforcement with eBPF LSM: block file/network operations before syscalls complete.

Score
50
โ˜… 17 โ‘‚ 0 โ€”
C++
blues-man
blues-man
vote-app-gitops

A demo of cloud-native Inner Loop and Outer Loop controlling a 2-tier app (Python + Go) with Red Hat OpenShift using Tekton Pipelines, Argo CD GitOps, Eclipse Che aka OpenShift DevSpaces and Quay.io registry

Score
25
โ˜… 16 โ‘‚ 49 โ€”
Smarty
Related Topics
#security#kubernetes-security#kubernetes#security-tools#devsecops#docker#cloud-native#cloud-security#container#cloud-native-security#devops#compliance

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly