Akeyless Vault
Secrets Management: Automate Secrets across your DevOps tools and cloud platforms using a secured vault for credentials, tokens, API-Keys and passwords.
linux windows osx bsd solaris free commercial security
Ansible
A versatile orchestration engine that can automate systems and apps. Instead of a custom scripting language or code, it is very simple and shell based. It is also agent-less, so you can just start using it right away and get things done
linux open-source provisioning config-mgmt orchestration python
aptly
aptly is a swiss army knife for Debian repository management: it allows you to mirror remote repositories, manage local package repositories, take snapshots, pull new versions of packages along with dependencies, publish as Debian repository.
linux packaging artifacts open-source
Archiva
Apache Archiva™ is an extensible repository management software that helps taking care of your own personal or enterprise-wide build artifact repository.
linux windows osx bsd solaris open-source artifacts
Artifactory
JFrog’s Artifactory open source project was created to speed up development cycles using binary repositories. It’s the world’s most advanced repository manager, creating a single place for teams to manage all their binary artifacts efficiently.
linux windows open-source artifacts packaging
Assimilation System Management Suite
The Assimilation Suite discovers systems, services, network connections, configuration and dependencies, IP and MAC addresses. This all goes into a continually updated graph-based configuration management database (CMDB). This is then compared and scored against best practices, services and servers are monitored - all with near-zero configuration - in a way that scales to hundreds of thousands of servers. It also provides visualization tools, APIs for sending alerts to humans and other systems, and a variety of canned reports (queries) to aid in securing and managing systems, hooking into ChatOps, and creating plans for triaging your security issues
linux open-source commercial C shell python config CMDB service-discovery monitoring visualization security hardening
Bastillion
Bastillion is an open-source web-based SSH console that centrally manages administrative access to systems. A bastion host for administrators with features that promote infrastructure security, including key management and auditing.
linux open-source security
Bolt
Bolt is an open source orchestration tool that automates the manual work it takes to maintain your infrastructure. Use Bolt to automate tasks that you perform on an as-needed basis or as part of a greater orchestration workflow. For example, you can use Bolt to patch and update systems, troubleshoot servers, deploy applications, or stop and restart services. Bolt can be installed on your local workstation and connects directly to remote targets with SSH or WinRM, so you are not required to install any agent software.
linux open-source provisioning config-mgmt orchestration ruby
Boxstarter
Repeatable, reboot resilient windows environment installations made easy using Chocolatey packages. When its time to repave either bare metal or virtualized instances, locally or on a remote machine, Boxstarter can automate both trivial and highly complex installations. Compatible with all Windows versions from Windows 7/2008 R2 forward.
windows open-source virt packaging provisioning powershell
bugsnag
Monitor everything you're building.
windows linux osx open-source ruby java python php nodejs errors
Cloud Application Manager
Cloud Application Manager is a software-defined managed services orchestration platform that enables the configuration, deployment, management and automation of applications within public, private and hybrid IT environments.
linux osx solaris windows commercial cloud-paas config-mgmt provisioning orchestration
CFEgine
An open source configuration management system whose primary function is to provide stable and resilient automated configuration and maintenance of large-scale computer systems, including the unified management of servers, desktops, embedded networked devices, mobile smartphones, and tablet computers. It is an agent based system that is fully distributed and autonomous. It is very lightweight, fast, portable, and flexible with a strong security track record.
linux Solaris Windows open-source commercial config-mgmt C
Cft
Cft watches as you make changes to your server, and then creates puppet manifests for the resulting actions. Simplifies creating puppet configuration.
linux open-source config-mgmt provisioning orchestration
ChartMuseum
Host your own Helm Chart Repository ChartMuseum is an open-source, easy to deploy, Helm Chart Repository server.
linux open-source packaging artifacts
Checkov
Infrastructure as Code security scanner supporting Kubernetes, Helm, Terraform, CloudFormation, ARM templates and more.
linux windows osx open-source security
Chef
Configuration management tool which uses a pure-Ruby, domain-specific language (DSL) for writing system configuration recipes. Supports Linux, UNIX, Windows, and AIX as first-class citizens for management.
linux windows open-source provisioning config-mgmt ruby
Chocolatey
Chocolatey is like apt-get for Windows. It can install packages and dependencies over the command line.
windows open-source packaging provisioning powershell
CloudRepo
Public and Private Maven and Python (PyPi) repositories. Fully managed and highly available repository hosting.
linux windows osx bsd solaris commercial packaging artifacts java clojure scala groovy python pypi cloud maven sbt leiningen gradle ivy
COBBLER
Cobbler is a Linux installation server that allows for rapid setup of network installation environments. It glues together and automates many associated Linux tasks so you do not have to hop between many various commands and applications when deploying new systems, and, in some cases, changing existing ones. Cobbler can help with provisioning, managing DNS and DHCP, package updates, power management, configuration management orchestration, and much more.
linux open-source config-mgmt provisioning orchestration
ConDep
ConDep is a open source infrastructure configuration and deployment DSL (Domain Specific Language) specifically targeted to (but not limited to) the Windows Server platform. If your familiar with tools like Chef and Puppet, ConDep does very much the same, but with native support for Windows.
windows open-source ci provisioning config-mgmt net
elmah.io
Cloud-based error management/logging for .NET web applications. Find bugs before you go live. Powerful search, API, integration with Slack, GitHub, Visual Studio and more.
windows commercial errors logging monitoring
FAI
Fully Automatic Installation (FAI) is a tool for mass unattended deployment of Linux. You can take one or more virgin PCs, turn on the power, and after a few minutes, the systems are installed and completely configured.
linux open-source config-mgmt provisioning perl
Fig
A package management tool, similar to Ivy/APT, but language agnostic, faster and works well with both executables and libraries.
linux windows osx open-source packaging ruby
Foreman
A complete lifecycle management tool for servers, both self-hosted and in the cloud. It allows you to create and manage instances, build and deploy images, view and audit hosts, and much more! It works with Puppet or Chef, and has multiple interaction facilities like a web frontend, CLI and a RESTful API.
linux open-source virt config-mgmt provisioning monitoring cloud-paas ruby
FPM
Effing Package Managers (FPM) is a single tool that can generate rpm, deb, solaris, osx (pkg) and many other packages. It supports multiple inputs (directory, gem, egg, deb, etc) and can produce multiple outputs (rpm, deb, solaris, etc). It relieves the pain out of creating various kinds of packages.
linux osx open-source packaging ruby
Gauntlt
Gauntlt provides hooks to a variety of security tools and puts them within reach of security, dev and ops teams to collaborate to build rugged software. It is built to facilitate testing and communication between groups and create actionable tests that can be hooked into your deploy and testing processes.
linux open-source security hardening ruby
Harbor
Harbor is an open source cloud native registry that stores, signs, and scans container images for vulnerabilities. Harbor solves common challenges by delivering trust, compliance, performance, and interoperability. It fills a gap for organizations and applications that cannot use a public or cloud-based registry, or want a consistent experience across clouds.
linux open-source security hardening
Hardening Framework
The Hardening Framework combines DevOps with security by adding a security layer into your automation framework, that configures your operating systems and services. It takes care of difficult settings, compliance guidelines, cryptography recommendations, and secure defaults. Works great with Puppet, Chef and Ansible.
linux open-source security hardening chef puppet ansible
Herd
A bittorrent based file distribution system based on Twitter’s Murder. It uses BitTorrent to push artifacts and code very fast across thousands of servers.
linux windows osx open-source packaging python
Intelliment Security Policy Automation
Intelliment is a platform to allow enterprises to automate their network security policy management in order to help them better handle their security at scale and to respond faster to network threats
linux commercial security orchestration provisioning networking firewall
Jenkins X
Jenkins X provides pipeline automation, built-in GitOps and preview environments to help teams collaborate and accelerate their software delivery at any scale.
linux windows osx open-source ci cd artifacts packaging provisioning
mgmt
The mgmt tool is a distributed, event driven, config management tool, that supports parallel execution, and librarification to be used as the management foundation in and for, new and existing software.
linux osx open-source config config-mgmt
NGINX Amplify
Amplify is free monitoring tool for NGINX. Amplify offers extended NGINX metric collection, visualization, monitoring, and a static analyzer for NGINX configuration. It's simple to set up, yet powerful enough to bring the much needed insight into NGINX performance. Amplify is a SaaS developed and operated by Nginx, Inc. Keep NGINX up to date and secure with a native monitoring solution.
linux bsd free commercial logging monitoring metrics visualization security hardening errors
Ngrok
Ngrok provides secure, encrypted tunnels to local services with out the requirement for port forwarding.
linux windows osx bsd solaris open-source free commercial networking
ntopng
'ntopng' provides an easy to understand, intuitive interface with a world of options and features to monitor your network.
linux bsd solaris open-source free commercial networking metrics
Opskeleton
Bootstrap a DevOps infrastructure with some opinionated defaults (vagrant, puppet, librarian-puppet, git, etc), standard development guidelines, etc. Makes it very quick to get a DevOps team up and running
linux open-source scm virt config-mgmt provisioning orchestration ruby
ossec
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows
open-source security hardening linux windows solaris osx bsd
Zed Attack Proxy (ZAP)
A penetration testing tool for finding vulnerabilities in web applications, from OWASP
linux windows osx open-source security
Poni
A system management and provisioning tool, with centralized configuration management
linux open-source config-mgmt provisioning orchestration python
Prevoty Application Monitoring & Protection (AMP)
Prevoty enables DevOps to inject security into your web applications and web services. Protection is provided at runtime from within the application itself, and stays with the app regardless of deployment method (cloud, on-premises, etc). Applications are protected against threats including XSS, SQLi, CSRF, command injection, etc. Works with Puppet, Chef, Ansible, Docker, Splunk, QRadar, ELK, and many others.
linux windows osx bsd commercial go java net nodejs perl php python ruby monitoring security hardening chef puppet ansible metrics-visualization ci
PowerShell Desired State Configuration
DSC is a new management platform in Windows PowerShell that enables deploying and managing configuration data for software services and managing the environment in which these services run.
linux windows powershell open-source commercial config-mgmt
Puppet
Puppet is a tool designed to manage the configuration of Unix-like and Microsoft Windows systems declaratively.
linux windows osx open-source config-mgmt ruby
Raygun
Raygun keeps a watchful eye on your web and mobile applications and tells you when problems arise.
windows linux osx open-source python nodejs java ruby errors
Rollbar
Detect, diagnose and defeat errors.
linux windows osx nodejs open-source ruby php java python errors
Rudder
RUDDER is a professional, open source, multi-platform solution for managing configurations of mission-critical systems. Based on the Continuous Configuration concept, RUDDER embodies the fusion of configuration management and continuous audit.
linux open-source config-mgmt
SaltStack
Salt is a powerful and different approach to infrastructure management, by focusing on high speed communications between large number of systems, and can perform orchestration, remote code execution and much more.
linux windows osx open-source commercial config-mgmt provisioning orchestration python
Sentry
Automate error tracking to find and fix issues before your users even experience a crash. Sentry is open-source, real-time, and loved by 100,000 developers around the world.
osx windows linux open-source errors nodejs ruby python php java monitoring
ShutIt
ShutIt is an automation platform. It makes it easy to create simple modular automation scripts that handle differing output, install software, log in and out of servers, capture output etc.. ShutItFiles are an extension to make it even easier for people to develop automation scripts.
linux open-source config-mgmt provisioning python
Snitch
SaaS SSL monitoring and alerting. Snitch audits for revocation, expiration, changes to the certificate, known security vulnerabilities, and best practices. Snitch worries about your SSL/TLS certificate so you don't have to
monitoring commercial linux windows freebsd bsd solaris osx metrics security hardening
SSH KeyBox
An open-source jump box solution with auditing capabilities
linux open-source cloud monitoring security java
StackStorm
A platform for event-driven automation. StackStorm allows you to integrate and automate across services and tools. It ties together your existing infrastructure and application environment so you can more easily automate that environment -- with a particular focus on taking actions in response to events.
automation cd provisioning cloud orchestration config-mgmt orchestration python linux open-source apache2
System Integrety Management Platform
SIMP is an enterprise ready, full-featured, infrastructure framework designed around policy compliance and enforcement over time. It aims to be an open source practical reference implementation for both policy and best security practice able to run in both enclave and cloud environments.
config-mgmt linux open-source security hardening puppet nist-800-53 disa-stig fips compliance automation framework
TeamPass
TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment.
linux windows osx bsd solaris open-source security
testssl.sh
A command-line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for your "is this good or bad" decision.
linux osx open-source security shell
Tinfoil Security
Thorough web application security testing, with an extensive API, easy to hook into CI and issue tracking tools.
linux windows osx free commercial ci monitoring security
VAddy
VAddy integrates with your existing CI tools and performs robust security checks. Cloud-Based Service Automates Security Tests for DevOps Teams.
linux windows osx free commercial ci cloud security
Vagrant Cachier
A Vagrant plugin that helps you reduce the amount of coffee you drink while waiting for boxes to be provisioned by sharing a common package cache among similiar VM instances.
linux windows osx open-source virt artifacts ruby
Vault
Manage Secrets and Protect Sensitive Data. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.
linux windows osx bsd solaris open-source comercial security
Vaurien
A Chaos Monkey for TCP, it randomly disconnects or stalls TCP connections in your application to test application tolerance and high availability. Makes sure you correctly handle these unexpected events
linux windows osx open-source security python
Veewee
veewee is a great tool for building Virtual Machine images (aka base boxes). It automates most of the steps and allows you to easily create readymade images for VirtualBox/Vagrant, VMWare Fusion, KVM and Parallels. No longer need to shy away from building custom VM images!
linux osx windows open-source virt packaging ruby
Verdaccio
Verdaccio is an open-source local repository for NPM packages. It provides private-access packages, caching, and overriding public packages.
linux windows osx bsd solaris open-source free packaging artifacts