9 projects
Meet us in Atlanta for KubeCon + CloudNativeCon North America · Nov 10-13 · REGISTER TODAY
Cilium
Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.
Contributors
7,358
Organizations
2,077
Software value
$872M
Kyverno
Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources and no new language is required to write policies.
Contributors
3,233
Organizations
991
Software value
$69M
Falco
Falco, the open source cloud-native runtime security project, is the defacto Kubernetes threat detection engine. Falco detects unexpected application behavior and alerts on threats at runtime.
Contributors
2,896
Organizations
761
Software value
$32M
Kubescape
Kubescape is an open-source tool for testing if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA hardening guidance and the MITRE ATT&CK® . Kubescape scans K8s clusters, YAML files, and HELM charts, and detect misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline and provides a risk score instantly and risk trends over time. Kubescape integrates natively with other DevOps tools, including Jenkins, CircleCI and Github workflows. Kubescape policies are based on Open Policy Agent and the REGO language. A key idea behind Kubescape it to put security capabilities at the hands of the Developers and the DevOps teams. Our vision is to create a wide open-source Kubernetes security project with capabilities that will span across configuration control, vulnerabilities, RBAC management and runtime security - all made for developers and DevOps to add to their tools in a native way.
Contributors
1,265
Organizations
370
Software value
$26M
Prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
This project hasn't been onboarded to LFX Insights.
StackRox Kubernetes Security Platform
The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security by hardening the environment.
This project hasn't been onboarded to LFX Insights.