drydock
drydock is a Docker security audit tool written in Python. It allows for the easy creation and use of custom audit profiles to eliminate noise and false alarms. Reports are saved in JSON format for easier parsing. drydock is based on the CIS Docker 1.6 Benchmark and heavily uses the docker-py client API for communication with Docker. To use drydock, clone the repository, install requirements, and run the tool with a provided profile or create custom profiles.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A project that sets up partitioned Athena tables for CloudTrail logs and updates partitions nightly.
Open-source policy-as-code software for multi-cloud and SaaS environments with GPT model conversations and custom analysis policies.
An open-sourced framework for managing resources across hundreds of AWS Accounts
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
A tool that determines what AWS API calls are logged by CloudTrail and what they are logged as, and can also be used as an attack simulation framework.
A project exploring minimal set of restrictions for running untrusted code using Linux containers in a concise codebase.
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.
A cloud and database asset intelligence platform that provides continuous monitoring, compliance management, and security posture assessment across hybrid cloud environments.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.