OSIDB — Open Security Issue Database

Automated CVE analysis for threat prioritization and impact prediction

Public fork of github.com/heroku/docker-registry-client

Pure go implementation of https://github.com/signalapp/libsignal

Vulnerability Static Analysis for Containers

foundation modules for scanning container packages and reporting vulnerabilities

This repo pulls CVEs from NVD, filters them and pushes to stackrox google cloud bucket.

.NET scraper houses .NET vulnerabilities, a primitive scraper and a cron job to ensure that we have all the most updated vulns

Curated repo of Kubernetes CVEs

Runtime data collection for the StackRox Kubernetes Security Platform using eBPF

The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security…

The StackRox Jenkins Plugin for image scanning and security

KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adhere to best practices.

Blazing fast, structured, leveled logging in Go.

YAML files accompanying the StackRox Network Policies guide.

A gRPC via HTTP/1 Enabling Library for Go

Sample code and files from StackRox blog posts

Materials for a live workshop at BSidesSF on deployment-level Kubernetes security controls

Helm charts for StackRox Kubernetes Security Platform

Kubernetes admission controller webhook example

C0rn3LL 4 L337 H4xx0rz