5 个仓库
Mechanisms for protecting data during transit and integration.
Distinct from Data Security: Distinct from Data Security: focuses on the security of data in transit during synchronization rather than static storage protection.
Explore 5 awesome GitHub repositories matching security & cryptography · Secure Synchronization. Refine with filters or upvote what's useful.
This project is a feature-rich Go client library designed for interacting with Redis. It serves as a comprehensive interface for managing remote data stores, enabling developers to execute standard database commands, handle complex data structures, and perform asynchronous operations within Go applications. The library distinguishes itself through its support for advanced Redis capabilities, including connection pooling, pipelining, and transactional integrity. It provides specialized primitives for managing distributed clusters, including automated topology updates and request routing to sha
Protects data in transit using private networking and external secret stores during synchronization processes.
Kubescape is a Kubernetes security posture management platform designed to scan clusters, manifests, and images for misconfigurations, vulnerabilities, and compliance risks. It functions as a comprehensive security suite incorporating a compliance scanner, a container image vulnerability scanner, an admission controller for policy enforcement, and a runtime security monitor. The platform distinguishes itself through runtime-aware vulnerability filtering, which maps libraries loaded in memory to determine if vulnerabilities are actually reachable. It also integrates with AI assistants via a Mo
Synchronizes security frameworks and scan results between the local cluster and remote services.
Webmin is a web-based administration interface for Unix systems. It provides a centralized console for managing the full range of server administration tasks — users and groups, software packages, storage, network configuration, system services, and security — all through a browser. Its modular architecture allows separate modules to handle databases (MySQL, MariaDB, PostgreSQL), web servers (Apache), DNS (BIND), email (Sendmail, Dovecot), file sharing (Samba, NFS), and more, with a unified access control system that restricts what each administrator can see and do. What sets Webmin apart is
Shares blocked and allowed IP lists among a group of servers to maintain consistent security policies.
Santa 是一个专为 macOS 设计的二进制授权系统,旨在根据定义的信任规则控制和监控哪些二进制文件可以执行。它作为应用程序白名单软件,通过根据加密哈希和签名证书进行验证,防止未经授权的程序运行。 该系统通过记录每个二进制启动事件来提供执行监控,从而创建可见的软件执行轨迹。它支持集中式审计日志,以跟踪跨多个设备的成功和被拒绝的应用程序启动,通过同步规则和日志确保企业设备合规性。 控制通过规则系统进行管理,该系统利用加密校验和、数字签名验证和正则表达式路径匹配。该框架包括内核级执行拦截,以便在二进制文件运行前进行验证,并维护一个本地数据库用于记录活动和审计。
Synchronizes allow-lists and block-lists from a central server to maintain consistent security policies across a fleet.
Harden-Windows-Security is a security hardening tool and framework designed to reduce the attack surface of the Windows operating system through policy enforcement. It provides a collection of security presets and templates to implement official hardening standards across multiple devices. The project distinguishes itself through a comprehensive execution control system, featuring a manager for Windows Application Control and a kernel protection suite. It implements strict trust models, including kernel-mode driver whitelisting, signed policy implementation on the EFI partition, and code inte
Fetches predefined security standards and configuration policies from a remote management tenant for fleet deployment.