Container Security

API Security

Offensive 360 on SecurityListing: SAST tool using virtual compilers to analyze source code for vulnerabilities

Container Security

BoostSecurity Continuous AppSec Testing on SecurityListing: Continuous AppSec testing platform with zero-touch provisioning for CI/CD

Container Security

CloudDefense.AI on SecurityListing: CloudDefense.AI is a Cloud Native Application Protection Platform (CNAPP) that safeguards cloud infrastructure and cloud-native apps with expertise, precision, and confidence.

Container Security

Capsicum on SecurityListing: A security framework for process isolation and sandboxing based on capability-based security principles.

Container Security

Docker Security - Quick Reference on SecurityListing: A book that helps improve Docker security by covering risks and countermeasures

Container Security

BluSapphire OneAgent™ on SecurityListing: Prevention-first EDR stopping zero-day attacks, ransomware, and fileless malware

Container Security

Kodem C.O.R.E. on SecurityListing: Unified engine correlating static & runtime analysis for app security

Container Security

MatosSphere Software Composition Analysis on SecurityListing: SCA tool for detecting vulnerabilities & license risks in open-source deps

Container Security

Edera AI Agents on SecurityListing: Secure infrastructure for deploying and executing AI agent workloads.

Container Security

DEF CON CTF Archive on SecurityListing: A live archive of DEF CON CTF challenges, vulnerable by design, for hackers to play safely.

Container Security

F5 Aspen Mesh on SecurityListing: Istio-based service mesh for 5G microservices & cloud-native deployments

Container Security

Real Sandbox Containers on SecurityListing: Exploring the transition towards real sandbox containers and the differences in privileges compared to traditional sandboxes like Chrome.

Container Security

Jit on SecurityListing: An integrated application security platform that combines multiple security scanning tools with developer-focused workflows for automated code and infrastructure security testing.

Container Security

Anchore Enforce on SecurityListing: Policy enforcement & compliance mgmt for container security across SDLC

Container Security

Understanding Docker container escapes on SecurityListing: Exploit that launches a process on the host from within a Docker container run with the --privileged flag by abusing the Linux cgroup v1 “notification on release” feature.

Container Security

Plexicus Container Security on SecurityListing: Container security platform scanning images, enforcing K8s policies & runtime threats

Container Security

Uptycs Cloud Workload Protection Platform on SecurityListing: Cloud workload protection platform for hybrid cloud environments

Container Security

Raven Runtime Application Protection on SecurityListing: Runtime app protection with function-level reachability and exploit prevention

Container Security

Minimus on SecurityListing: Provides hardened container & VM images with minimal CVEs and threat intel

Container Security

Wiz Supply Chain Security on SecurityListing: Cloud-native SCA and SBOM platform for supply chain security across code to runtime

Container Security

Ramblings from Jessie: Setting the Record Straight: containers vs. Zones vs. Jails vs. VMs on SecurityListing: A blog post discussing the differences between Solaris Zones, BSD Jails, VMs, and containers, with the author arguing that containers are not a real thing.

Container Security

Vali Cyber ZeroLock on SecurityListing: Linux security platform for federal/national security environments

Container Security

Anchore Secure on SecurityListing: Container & source code scanning for vulnerabilities, malware, and secrets