5 dépôts
Mechanisms for protecting data during transit and integration.
Distinct from Data Security: Distinct from Data Security: focuses on the security of data in transit during synchronization rather than static storage protection.
Explore 5 awesome GitHub repositories matching security & cryptography · Secure Synchronization. Refine with filters or upvote what's useful.
This project is a feature-rich Go client library designed for interacting with Redis. It serves as a comprehensive interface for managing remote data stores, enabling developers to execute standard database commands, handle complex data structures, and perform asynchronous operations within Go applications. The library distinguishes itself through its support for advanced Redis capabilities, including connection pooling, pipelining, and transactional integrity. It provides specialized primitives for managing distributed clusters, including automated topology updates and request routing to sha
Protects data in transit using private networking and external secret stores during synchronization processes.
Kubescape is a Kubernetes security posture management platform designed to scan clusters, manifests, and images for misconfigurations, vulnerabilities, and compliance risks. It functions as a comprehensive security suite incorporating a compliance scanner, a container image vulnerability scanner, an admission controller for policy enforcement, and a runtime security monitor. The platform distinguishes itself through runtime-aware vulnerability filtering, which maps libraries loaded in memory to determine if vulnerabilities are actually reachable. It also integrates with AI assistants via a Mo
Synchronizes security frameworks and scan results between the local cluster and remote services.
Webmin is a web-based administration interface for Unix systems. It provides a centralized console for managing the full range of server administration tasks — users and groups, software packages, storage, network configuration, system services, and security — all through a browser. Its modular architecture allows separate modules to handle databases (MySQL, MariaDB, PostgreSQL), web servers (Apache), DNS (BIND), email (Sendmail, Dovecot), file sharing (Samba, NFS), and more, with a unified access control system that restricts what each administrator can see and do. What sets Webmin apart is
Shares blocked and allowed IP lists among a group of servers to maintain consistent security policies.
Santa est un système d'autorisation binaire pour macOS conçu pour contrôler et surveiller quels binaires peuvent s'exécuter en fonction de règles de confiance définies. Il fonctionne comme un logiciel de liste blanche d'applications qui empêche l'exécution de programmes non autorisés en les vérifiant par rapport à des hashs cryptographiques et des certificats de signature. Le système fournit une surveillance de l'exécution en enregistrant chaque événement de lancement de binaire pour créer une piste d'exécution logicielle visible. Il permet une journalisation d'audit centralisée pour suivre les lancements d'applications réussis et refusés sur plusieurs appareils, garantissant la conformité des appareils d'entreprise via des règles et des logs synchronisés. Le contrôle est géré via un système de règles qui utilise des sommes de contrôle cryptographiques, la vérification de signature numérique et la correspondance de chemin par expression régulière. Le framework inclut une interception de l'exécution au niveau du noyau pour vérifier les binaires avant leur exécution et maintient une base de données locale pour enregistrer l'activité et l'audit.
Synchronizes allow-lists and block-lists from a central server to maintain consistent security policies across a fleet.
Harden-Windows-Security is a security hardening tool and framework designed to reduce the attack surface of the Windows operating system through policy enforcement. It provides a collection of security presets and templates to implement official hardening standards across multiple devices. The project distinguishes itself through a comprehensive execution control system, featuring a manager for Windows Application Control and a kernel protection suite. It implements strict trust models, including kernel-mode driver whitelisting, signed policy implementation on the EFI partition, and code inte
Fetches predefined security standards and configuration policies from a remote management tenant for fleet deployment.