Repository navigation
trivy
- Website
- Wikipedia
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
🧵 CLI tool for directly patching container images!
ValidKube combines the best open-source tools to help ensure Kubernetes YAML best practices, hygiene & security.
🧹 Cleaning up images from Kubernetes nodes
VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/DOCX, attachments, automatic changelog, stats, vulnerability management, bugbounty, local ai/llm, super fast pentest reporting!
Import Helm Charts to OCI registries, optionally with vulnerability patching
Vulnerability scanning just got lazier
A set of curated exercises to help you prepare for the CKS exam
m9sweeper is a free and easy kubernetes security platform.
Use Trivy as a plug-in vulnerability scanner in the Harbor registry
Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive data table.
DevOps Project: AWS EKS, CI/CD, Docker, Kubernetes, Argo CD, Git, Terraform, Prometheus, Grafana, and more. Build a Dev Portfolio with this powerful tech stack.
Udemy Course on DevSecOps
Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.
Practice questions for Certified Kubernetes Security Specialist (CKS) exam
GitHub Action to check for vulnerabilities in your container image
Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.
DevOps-MasterPiece Project using Git, GitHub, Jenkins, Maven, JUnit, SonarQube, Jfrog Artifactory, Docker, Trivy, AWS S3, Docker Hub, GitHub CLI, EKS, ArgoCD, Prometheus, Grafana, Slack and Hashicorp Vault