Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

📦 Make security testing of K8s, Docker, and Containerd easier.

veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

Metarget is a framework providing automatic constructions of vulnerable infrastructures.

🧵 CLI tool for directly patching container images!

A Blazing fast Security Auditing tool for Kubernetes

Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)

Help building an adaptive and fine-grained pod security policy

awesome resources about cloud native security 🐿

k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.

Inspect certificate authorities in container images

🔐 Docker Container for Penetration Testing & Security

🧰 Multi Tool Kubernetes Pentest Image

🏴‍☠️ Hacking Guides, Demos and Proof-of-Concepts 🥷

OpenShift Guide. Learn about the Red Hat OpenShift Container Platform, Data Science, Code Ready Containers, Podman, Buildah, and Kubernetes.

A collection of tools to improve your containerized apps security posture

A container image that exfiltrates the underlying container runtime to a remote server

一个由长亭自研，直观而可扩展的容器安全 SDK

Simplifying Seccomp enforcement in containerized or non-containerized apps