Cloud Custodian (c7n) is a rules engine for managing public cloud accounts and resources with a focus on security, compliance, and cost optimization.
Gatekeeper introduces the following functionality: An extensible, parameterized policy library Native Kubernetes CRDs for instantiating the policy library (aka "constraints") Native Kubernetes CRDs for extending the policy library (aka "constraint templates") Native Kubernetes CRDs for mutation support Audit functionality External data support Get started with the installation instructions to deploy Gatekeeper components to your Kubernetes cluster. Documentation is available on the Gatekeeper website. Policy Library: See the Gatekeeper policy library for a collection of constraint templates and sample constraints that you can use with Gatekeeper. Community & Contributing: Refer to Gatekeeper's contribution guide to find out how you can help. Code of conduct: This project is governed by the CNCF Code of conduct. Security: For details on how to report vulnerabilities and security release process, please refer to Gatekeeper Security for more information.
Cloud Custodian (c7n) is a rules engine for managing public cloud accounts and resources with a focus on security, compliance, and cost optimization.
Tool for assessing compliance and running vulnerability scans on Docker images.
A free training course and lab environment for learning to test and attack cloud infrastructure, including AWS and Azure.
AWS serverless cloud security tool for parsing and alerting on CloudTrail logs using EQL.
Ice provides a birds-eye view of cloud resources and usage patterns in AWS.
An open-source framework for testing and validating the security of AWS services and resources.