A simple security scanner for vulnerabilities and configuration issues in IaC such as Kubernetes, Dockerfile and Terraform

This page summarizes the projects mentioned and recommended in the original post on /r/netsec

Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
  • trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  • appshield

    Discontinued Security configuration checks for popular cloud native applications and infrastructure.

  • For the IaC scanning there's a couple of rule sources. The Docker and Kubernetes rules come from the AppShield project (https://github.com/aquasecurity/appshield/). The Terraform Scanning is powered by tfsec (https://github.com/aquasecurity/tfsec/)

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
  • tfsec

    Security scanner for your Terraform code

  • For the IaC scanning there's a couple of rule sources. The Docker and Kubernetes rules come from the AppShield project (https://github.com/aquasecurity/appshield/). The Terraform Scanning is powered by tfsec (https://github.com/aquasecurity/tfsec/)

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts