Driving Security Innovation in The Cloud Native Community

Our goal is to ensure that security drives faster adoption of cloud native technologies and processes, while avoiding security risks. Open source drives this forward.

Accelerate Adoption
On-Ramp to Security
Dedicated to Open Source
Accelerating Cloud Native Adoption
Security is often cited as the #1 concern to hinder cloud native adoption. Open source allows us to educate engineering, security, and DevOps teams through accessible tools, reducing the skills gap and automating security controls into cloud native pipelines well before applications go into production.
trivy on GitHub
The Open Source
On-Ramp to Security
Our open source tools help users get hands-on, effective security tooling that can immediately address their most burning concerns. Our open source users may graduate to our commercial tools when reaching a certain scale or level of complexity, but our open source tools are designed to be used independently and provide value “as is”.
Open Source Is Not Just Our Hobby
At Aqua we’ve built a team exclusively dedicated to open source, separate from our commercial engineering team. This ensures we can commit, long term, to creating and maintaining high quality code, and ensure ongoing involvement in contributing to other open source community projects.
Trivy
Manage vulnerabilities in your pipeline

The most comprehensive and easy-to-use open source vulnerability scanner for container images

  • Detects vulnerabilities in OS packages and application dependencies
  • Fast, stateless scanning with no prerequisites for installation
  • Easy integration into CI tools
  • Highly accurate and comprehensive results
Go
Get Trivy

Learn More

CloudSploit
Ensure cloud compliance and secure configuration

Cloud Security Posture Management with hundreds of checks on cloud IaaS account and service configuration

  • Supports AWS, Azure, Google Cloud, Oracle Cloud and GitHub
  • Extensible plug-in architecture
  • Full RESTful API access
JavaScript
Get CloudSploit
Kube-bench
Securely configure your Kubernetes clusters

The industry standard tool for checking Kubernetes compliance with the Center for Internet Security (CIS) Benchmark

  • Auto-detect correct tests per node type and version
  • Customizable test definitions through YAML
  • Special definitions for Red Hat’s OpenShift hardening guide
Go
Get Kube-bench
Kube-hunter
Test your Kubernetes setup against exploits

Penetration testing that simulates dozens of attack vectors on your Kubernetes cluster

  • Run either as external unauthorized user, or in a pod to simulate the consequences of a compromised container
  • Active mode shows proof of pen-test success

Visibility into real-world exposure to risk

Python
Get Kube-hunter

Additional Open Source Tools and Contributions

Tracee

Trace container events, including syscalls and capabilities, using eBPF

Get tracee
kubectl-who-can

See who has permission to perform specific actions on K8s objects

Read more

Get kubectl-who-can
Harbor plugins

Pluggable image vulnerability scanning for Harbor Registry

Get harbor-scanner-trivy
Aqua Wave
The Fast track to secure your cloud
Need to secure enterprise workloads?
Aqua Enterprise
Go cloud native with the experts!
Get Demo
Aqua Blog
All about cloud native
and security

    Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed. Aqua customers are among the world’s largest enterprises in financial services, software, media, manufacturing and retail, with implementations across a broad range of cloud providers and modern technology stacks spanning containers, serverless functions, and cloud VMs.

Copyright © 2020 Aqua Security Software Ltd.   Privacy Policy | Terms of Use