cetusguard
Privilege guard
Protects Docker daemon socket by filtering API calls to prevent privilege escalation and unauthorized access
CetusGuard is a tool that protects the Docker daemon socket by filtering calls to its API endpoints.
54 stars
4 watching
1 forks
Language: Go
last commit: 10 days ago
Linked from 1 awesome list
containerdaemondockerfirewallproxysecurity
veggiemonk/awesome-dockerRelated projects:
| Repository | Description | Stars |
|---|---|---|
| hectorm/hblock | A tool that protects users from ads, malware and trackers by blocking malicious domains on their system. | 1,624 |
 paimpozhil/magefirewall | Protects Magento e-commerce systems from security threats by monitoring and analyzing system activity. | 35 |
 justinas/nosurf | Protects against Cross-Site Request Forgery (CSRF) attacks in web applications by verifying user input | 1,589 |
 kfdm/promql-guard | Allows a shared Prometheus server to be accessed by tenants with restricted access | 24 |
 floragunncom/search-guard | Provides security features and authentication mechanisms for Elasticsearch clusters | 66 |
 suzuki-shunsuke/tfprovidercheck | Protects Terraform deployments from malicious providers by enforcing a whitelist of allowed providers and versions | 76 |
 diogomonica/docker-bench-security | Automated security testing and benchmarking tool for Docker containers in production environments. | 21 |
 knative-extensions/security-guard | A runtime security plugin to protect user containers from exploits and potential attacks on Kubernetes services. | 65 |
 session-replay-tools/cetus | Middleware designed to provide transparent routing between applications and MySQL servers for horizontal scaling and high availability | 1,247 |
 nachodd/vue-auth-href | A directive for adding authentication headers to downloads of protected files in a Vue.js application | 16 |
 tyranid/deviceguardbypasses | Provides bypasses and tools to analyze Windows 10's Device Guard restrictions | 133 |
 ml-tooling/ssh-proxy | A tool that allows users to securely access arbitrary containers via SSH while providing security features and full compatibility. | 80 |
 marshyski/quick-secure | Automates basic system security hardening and configuration | 415 |
 gokul595/api_guard | Provides JWT-based authentication with token refreshing and blacklisting for Rails APIs | 276 |
 ericelliott/credential | Protects user passwords from brute force, rainbow tables, and timing attacks by generating unique salts for each password. | 347 |