awesome-container-security
github.com/kai5263499/awesome-container-security ↗Awesome list of resources related to container security
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me coreos clair resources from awesome-container-security"
Installation instructions →What's inside
Image
- A more polished presentation of Clair at CoreOS Fest 2016CoreOS Clair
- anchore-cliAnchore
- AquaCommercial solutions
Full lifecycle container security management platform
- Black Duck SoftwareCommercial solutions
- Clair: The Container Image Security Analyzer (by Joey Schorr & Quentin Machu)CoreOS Clair
Presentation about the Clair platform
- Docker bench securityActuary
One of the first security linting utility for Docker
Presentations/Posts/Articles
- Awesome Object CapabilitiesCapability based sandboxing
A language-level implementation of the capability based sandboxing methodology
- Evolution of Container Usage at NetflixContainer Performance Analysis
Also provides insight into container monitoring, logging, and security at Netflix.
- Linux port of CapsicumCapability based sandboxing
Security profiles
- Bringing new security features to DockerContainer security as explained by the three pigs
- Technical discussionFalco
- The Container Coloring BookContainer security as explained by the three pigs
- WTF, My Container Just Spawned a Shell - Jorge Salamero Sanz, SysdigFalco
Jorge Salamero Sanz, Sysdig
Networking/Runtime
- Cilium - Container Security and Networking Using BPF and XDP - Thomas Graf, CovalentCilium
Presentation of Cilium by its creator
- FlannelCalico
- NeuVectorCommercial solutions
Continuous network security
- ProjectRomana
- StakRoxCommercial solutions
Container security solution with adaptive threat protection
- TwistLockCommercial solutions
Network activity profiling
Exploits
- Detailed write-upwaitid
- Dirty COW and why lying is bad even if you are the Linux kernelDirty COW
- Proof of conceptDirty COW
- Proof of concept collectionDirty COW
Build Management
- Docker CloudCommercial solutions
Continuous scanning of images along with a trust mechanism
- KubeStellar ConsoleCommercial solutions
Multi-cluster Kubernetes dashboard with AI-powered operations, real-time observability, and CNCF project integrations across edge and cloud clusters.
- Project AtomicCommercial solutions
RedHat's complete container solution with strong built-in security
Showing a sample of 34 resources. View the full list on GitHub →