Explore @aquasecurity Open Source projects

Aqua Security (@aquasecurity)

aquasecurity

Stars
49,996
Global Org. Rank 315 (Top 0.2 %)
Registered over 9 years ago
Most used languages

Go
50.0 %

Shell
11.7 %

TypeScript
6.3 %

HCL 4.7 %

JavaScript
3.9 %

Dockerfile
3.9 %

Python
3.9 %

Open Policy Agent 2.3 %

HTML
1.6 %

Makefile 1.6 %

C
1.6 %

Vim Script
1.6 %

Java
1.6 %

Others 5.6 %
Location 🇮🇱 Israel
Country Total Rank 3
Country Ranking

Go
1

HCL 1

jq 1

Open Policy Agent 1

Shell
1

Mustache 2

Dockerfile
3

Puppet
4

Python
5

Makefile 7

Vim Script
9

JavaScript
10

C
18

Vue 27

TypeScript
37

CSS
77

PHP
80

Ruby
100

HTML
167

Java
199

trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

tfsec

Tfsec is now part of Trivy

kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

kube-hunter

Hunt for security weaknesses in Kubernetes clusters

tracee

Linux Runtime Security and Forensics using eBPF

cloudsploit

Cloud Security Posture Management (CSPM)

starboard

Moved to https://github.com/aquasecurity/trivy-operator

trivy-operator

Kubernetes-native security toolkit

microscanner

Scan your container images for package vulnerabilities with Aqua Security

kubectl-who-can

Show who has RBAC permissions to perform actions on different resources in Kubernetes

trivy-action

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

libbpfgo

eBPF library for Go. Powered by libbpf.

chain-bench

An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

cloud-security-remediation-guides

Security Remediation Guides

vuln-list

NVD, Ubuntu, Alpine

btfhub

BTFhub, in collaboration with the BTFhub Archive repository, supplies BTF files for all published kernels that lack native support for embedded BTF. This joint effort ensures that even kernels without built-in BTF support can effectively leverage the benefits of eBPF programs, promoting compatibility across various kernel versions.

esquery

An idiomatic Go query builder for ElasticSearch

traceeshark

Deep Linux runtime visibility meets Wireshark

trivy-db

kube-query

[EXPERIMENTAL] Extend osquery to report on Kubernetes

harbor-scanner-trivy

Use Trivy as a plug-in vulnerability scanner in the Harbor registry

defsec

Trivy's misconfiguration scanning engine

postee

Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.

fanal

Static Analysis Library for Containers

cloudsec-icons

A collection of cloud security icons ☁️🔒

docker-bench

Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark

vuln-list-update

manifesto

Use Manifesto to store and query metadata for container images.

tfsec-pr-commenter-action

Add comments to pull requests where tfsec checks have failed

linux-bench

Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark

go-dep-parser

Dependency Parser for Multiple Programming Languages

lmdrouter

Go HTTP router library for AWS API Gateway-invoked Lambda Functions

appshield

Security configuration checks for popular cloud native applications and infrastructure.

Open Policy Agent

starboard-lens-extension

Lens extension for viewing Starboard security information

trivy-vscode-extension

A VS Code Extension for Trivy

btfhub-archive

The BTFhub Archive repository provides BTF files for those published kernels that lack native support for embedded BTF, thereby enhancing the versatility of eBPF programs across different kernel versions.

aqua-helm

Helm Charts For Installing Aqua Security Components

table

🧮 Tables for terminals, in Go.

tracee-action

Protect GitHub Actions with Tracee

Open Policy Agent

cfsec

Static analysis for CloudFormation templates to identify common misconfiguration

starboard-octant-plugin

Octant plugin for viewing Starboard security information

deployments

All Aqua deployments options and aquactl configuration

tfsec-sarif-action

tfsec-action

Vanilla GitHub action to run tfsec

trivy-azure-pipelines-task

An Azure Pipelines Task for trivy

community

Aqua Security's open source community

trivy-operator-lens-extension

https://github.com/aquasecurity/trivy-operator

terraform-provider-aquasec

go-version

A Go library for parsing and verifying versions and version constraints.

harbor-scanner-aqua

Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry

aqua-operator

The aqua-operator is a group of controllers that runs within a Kubernetes or Openshift cluster that provides a means to deploy and manage Aqua Security cluster and Components.

trivy-checks

trivy-java-db

vscode-tfsec

vscode extension for tfsec

trivy-kubernetes

Trivy kubernetes library

trivy-plugin-kubectl

A Trivy plugin that scans the images of a kubernetes resource

trivy-docker-extension

Docker Desktop Extension for Trivy

trivy-plugin-referrer

Trivy plugin for OCI referrers

trivy-enforcer

[EXPERIMENTAL] Kubernetes Operator for Image Assurance

chain-bench-action

aqua-aws

The repository not supported any more. Please use this one https://github.com/aquasecurity/deployments

trivy-pipe

Bitbucket Pipe for running Trivy in a Pipeline

starboard-operator

The Starboard Operator has moved to the main Starboard repo, and this one is being retired

windows-bench

Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark

saas-terraform-connection

Terraform modules for CloudSploit Scanner

trivy-ci-test

vexhub

saas-api-samples

Sample code snippets for consuming the CloudSploit API

helm-charts

Aqua Open Source Helm Chart Repository

circleci-orb-microscanner

Enables scanning of docker builds in CircleCi for OS package vulnerabilities.

vim-trivy

Vim Plugin for Trivy

vim-tfsec

List your tfsec issues in the QuickFix window with this plugin.

trivy-aws

trivy-plugin-aqua

go-git-pr-commenter

library for adding comments to git PRs

binfinder

Find binary files not installed through package manager

trivy-sarif-demo

cloud-metadata

Common metadata repository for CSPM and TFSec checks

tracee-test-kernels

Kernels for testing tracee CO-RE feature

bench-common

Common code for hardening benchmarks

trivy-repo

deb/rpm repository for Trivy

aws-security-hub-plugin

Aqua Security AWS Security Hub plugin

tracee-tester

This is a spin-off from Tracee project responsible for generating the docker image that tests open-source signatures.

gobard

Unofficial Golang API for Bard Chat.

aqua-dash

Sample Aqua CSP dashboard

trivy-iac

scan-cve-2018-8115

amazon-eks-devsecops

pipeline-enforcer-action

intellij-trivy

Trivy Plugin for the JetBrains family of IDEs

go-pep440-version

A golang library for parsing PEP 440 compliant Python versions

tfsec-azure-pipelines-task

An Azure DevOps Task for tfsec

build-security-action

GitHub Action for Aqua Build Security

go-npm-version

A golang library for parsing npm versions

saas-integrations

CloudSploit third-party integrations

trivy-plugin-attest

Publish SBOM attestation

k8s-node-collector

secfixes-tracker

Forked from https://gitlab.alpinelinux.org/kaniini/secfixes-tracker

trivy-module-wordpress

Trivy example module for WordPress

reportgen

PDF reports for Aqua CSP image and host vulnerabilities