Akeyless Vault
Secrets Management: Automate Secrets across your DevOps tools and cloud platforms using a secured vault for credentials, tokens, API-Keys and passwords.
linux windows osx bsd solaris free commercial security
aptly
aptly is a swiss army knife for Debian repository management: it allows you to mirror remote repositories, manage local package repositories, take snapshots, pull new versions of packages along with dependencies, publish as Debian repository.
linux packaging artifacts open-source
Archiva
Apache Archiva™ is an extensible repository management software that helps taking care of your own personal or enterprise-wide build artifact repository.
linux windows osx bsd solaris open-source artifacts
Artifactory
JFrog’s Artifactory open source project was created to speed up development cycles using binary repositories. It’s the world’s most advanced repository manager, creating a single place for teams to manage all their binary artifacts efficiently.
linux windows open-source artifacts packaging
Assimilation System Management Suite
The Assimilation Suite discovers systems, services, network connections, configuration and dependencies, IP and MAC addresses. This all goes into a continually updated graph-based configuration management database (CMDB). This is then compared and scored against best practices, services and servers are monitored - all with near-zero configuration - in a way that scales to hundreds of thousands of servers. It also provides visualization tools, APIs for sending alerts to humans and other systems, and a variety of canned reports (queries) to aid in securing and managing systems, hooking into ChatOps, and creating plans for triaging your security issues
linux open-source commercial C shell python config CMDB service-discovery monitoring visualization security hardening
Basebox-Packer
A comprehensive set of Packer definitions. It has quite a collection of 64 bit and 32 bit images for Vagrant VirtualBox and VMWare. A good place to learn Packer definitions.
linux open-source virt shell
Bastillion
Bastillion is an open-source web-based SSH console that centrally manages administrative access to systems. A bastion host for administrators with features that promote infrastructure security, including key management and auditing.
linux open-source security
Bento
A modularized collection of Packer definitions for building machine images. A good place to start with Packer.
linux windows osx open-source virt ruby
boot2docker
boot2docker is a lightweight Linux distribution based on Tiny Core Linux made specifically to run Docker containers. It runs completely from RAM, weighs ~24MB and boots in a couple of seconds. Can be used as a base OS when running your own PaaS with Docker, or other kind of deployments.
linux open-source virt cloud-paas
bugsnag
Monitor everything you're building.
windows linux osx open-source ruby java python php nodejs errors
ChartMuseum
Host your own Helm Chart Repository ChartMuseum is an open-source, easy to deploy, Helm Chart Repository server.
linux open-source packaging artifacts
Checkov
Infrastructure as Code security scanner supporting Kubernetes, Helm, Terraform, CloudFormation, ARM templates and more.
linux windows osx open-source security
CloudRepo
Public and Private Maven and Python (PyPi) repositories. Fully managed and highly available repository hosting.
linux windows osx bsd solaris commercial packaging artifacts java clojure scala groovy python pypi cloud maven sbt leiningen gradle ivy
CloudStack
Apache CloudStack is open source software designed to deploy and manage large networks of virtual machines, as a highly available, highly scalable Infrastructure as a Service (IaaS) cloud computing platform. CloudStack is used by a number of service providers to offer public cloud services, and by many companies to provide an on-premises (private) cloud offering, or as part of a hybrid cloud solution.
linux open-source virt cloud-paas
containerd
An industry-standard container runtime with an emphasis on simplicity, robustness and portability
linux open-source virt
CoreOS
CoreOS is an extremely lightweight base OS for Docker. It installs just a kernel, systemd and docker, and then you use Docker to pull in any service that you want. Can be used as a base OS when running your own PaaS with Docker, or other kind of deployments.
linux open-source commercial virt cloud-paas
CRI-O
CRI-O is an implementation of the Kubernetes CRI (Container Runtime Interface) to enable using OCI (Open Container Initiative) compatible runtimes. It is a lightweight alternative to using Docker as the runtime for kubernetes. It allows Kubernetes to use any OCI-compliant runtime as the container runtime for running pods. Today it supports runc and Kata Containers as the container runtimes but any OCI-conformant runtime can be plugged in principle. CRI-O supports OCI container images and can pull from any container registry. It is a lightweight alternative to using Docker, Moby or rkt as the runtime for Kubernetes.
linux open-source virt
Docker
Docker uses LXC to create and manage native, sandboxed virtual containers. LXC containers acts like a separate OSes, can install their own packages without affecting anything else, and overall have almost the same flexibility of VMs but without any of the virtualization overhead! Docker adds a ton of features, like an elegant configuration file that automates many things (like port forwarding, disk/directory mounting, networking, etc), a way to create and share readymade images that can be distributed as appliances, etc.
linux open-source virt cloud-paas provisioning go
Dokku Alt
Dokku on Steroids. The smallest PaaS implementation you've ever seen. It's fork of original dokku. The idea behind this fork is to provide complete solution with plugins covering most of use-cases which are stable and well tested.
linux open-source virt cloud-paas provisioning shell?
Dokku
It uses docker, git-receive and a few other lightweight and clever libraries to build a quick PaaS, all around just 100 lines of code! An excellent small tool to get started with PaaS systems. The same developer is creating a larger scale, production quality system called Flynn.
linux open-source virt cloud-paas provisioning shell?
Eucalyptus
An open source software for building Amazon EC2-compatible private and hybrid cloud platforms
linux open-source virt cloud-paas c
Fabric8
fabric8 is an end to end development platform spanning ideation to production for the creation of cloud native applications and microservices
linux windows osx open-source free cloud-paas virt go
Fig
A package management tool, similar to Ivy/APT, but language agnostic, faster and works well with both executables and libraries.
linux windows osx open-source packaging ruby
Flynn
From the creator of Dokku, Flynn is a full fledged, open source PaaS platform built on top of Docker. You just push code with a Procfile, and that’s it, Flynn immediately picks it up, provisions a Docker container and deploys the latest code! Its tagged as “the product that ops gives to developers”
linux open-source virt cloud-paas go
Foreman
A complete lifecycle management tool for servers, both self-hosted and in the cloud. It allows you to create and manage instances, build and deploy images, view and audit hosts, and much more! It works with Puppet or Chef, and has multiple interaction facilities like a web frontend, CLI and a RESTful API.
linux open-source virt config-mgmt provisioning monitoring cloud-paas ruby
FPM
Effing Package Managers (FPM) is a single tool that can generate rpm, deb, solaris, osx (pkg) and many other packages. It supports multiple inputs (directory, gem, egg, deb, etc) and can produce multiple outputs (rpm, deb, solaris, etc). It relieves the pain out of creating various kinds of packages.
linux osx open-source packaging ruby
Gauntlt
Gauntlt provides hooks to a variety of security tools and puts them within reach of security, dev and ops teams to collaborate to build rugged software. It is built to facilitate testing and communication between groups and create actionable tests that can be hooked into your deploy and testing processes.
linux open-source security hardening ruby
Harbor
Harbor is an open source cloud native registry that stores, signs, and scans container images for vulnerabilities. Harbor solves common challenges by delivering trust, compliance, performance, and interoperability. It fills a gap for organizations and applications that cannot use a public or cloud-based registry, or want a consistent experience across clouds.
linux open-source security hardening
Hardening Framework
The Hardening Framework combines DevOps with security by adding a security layer into your automation framework, that configures your operating systems and services. It takes care of difficult settings, compliance guidelines, cryptography recommendations, and secure defaults. Works great with Puppet, Chef and Ansible.
linux open-source security hardening chef puppet ansible
Herd
A bittorrent based file distribution system based on Twitter’s Murder. It uses BitTorrent to push artifacts and code very fast across thousands of servers.
linux windows osx open-source packaging python
Intelliment Security Policy Automation
Intelliment is a platform to allow enterprises to automate their network security policy management in order to help them better handle their security at scale and to respond faster to network threats
linux commercial security orchestration provisioning networking firewall
Jenkins X
Jenkins X provides pipeline automation, built-in GitOps and preview environments to help teams collaborate and accelerate their software delivery at any scale.
linux windows osx open-source ci cd artifacts packaging provisioning
ĵeto
Streamline your web projects from development from production. Jeto is a web interface for several ReST APIs (nginx-api, vagrant-worker and htpasswd-api). With Ĵeto you add and manage (start/stop/provision) vagrant projects on the fly via a nice and easy to use web interface.
linux open-source cloud cloud-paas paas ci cd virt provisioning orchestration python
Kubernetes
Kubernetes is a system for managing containerized applications across multiple hosts, providing basic mechanisms for deployment, maintenance, and scaling of applications
linux open-source virt orchestration go
LXD
LXD is a next generation system container manager. It offers a user experience similar to virtual machines but using Linux containers instead. It's image based with pre-made images available for a wide number of Linux distributions and is built around a very powerful, yet pretty simple, REST API.
linux open-source virt cloud-paas provisioning go
minikube
minikube implements a local Kubernetes cluster on macOS, Linux, and Windows.
linux windows osx open-source virt
Monit
An open source utility for managing and monitoring processes, programs, files, directories and filesystems
linux osx open-source monitoring process-mgmt c
Nebula
Nebula is a Docker orchestration tool designed to manage massive scale distributed clusters
linux open-source virt orchestration python
Netboot.xyz
Netboot.xyz is a preconfigured iPXE bootloader that completely eliminates the need for large ISO files for a vast range of operating systems.
linux windows osx bsd solaris open-source free commercial provisioning virt
NGINX Amplify
Amplify is free monitoring tool for NGINX. Amplify offers extended NGINX metric collection, visualization, monitoring, and a static analyzer for NGINX configuration. It's simple to set up, yet powerful enough to bring the much needed insight into NGINX performance. Amplify is a SaaS developed and operated by Nginx, Inc. Keep NGINX up to date and secure with a native monitoring solution.
linux bsd free commercial logging monitoring metrics visualization security hardening errors
Nomad
Nomad is a lightweight workload orchestrator. It offers client instance scaling as well as workload scaling.
linux windows osx open-source virt orchestration go
OpenNebula
An open source, scalable cloud operating system used for building private and hybrid clouds
linux open-source virt
OpenStack
An open source, massively scalable cloud operating system used for building private and public clouds
linux open-source virt cloud-paas
Opskeleton
Bootstrap a DevOps infrastructure with some opinionated defaults (vagrant, puppet, librarian-puppet, git, etc), standard development guidelines, etc. Makes it very quick to get a DevOps team up and running
linux open-source scm virt config-mgmt provisioning orchestration ruby
ossec
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows
open-source security hardening linux windows solaris osx bsd
OSV
An operating system for lightweight virtual machines, designed from ground-up to run a single application, similar to CoreOS
linux open-source virt python
Zed Attack Proxy (ZAP)
A penetration testing tool for finding vulnerabilities in web applications, from OWASP
linux windows osx open-source security
Packer
Packer is a tool for creating identical machine images for multiple platforms (like VirtualBox, VMWare, EC2, DigitalOcean, etc) from a single configuration file.
linux windows osx open-source virt cloud-paas go
Podman
Podman is a daemonless container engine for developing, managing, and running OCI Containers on your Linux System. Containers can either be run as root or in rootless mode. Simply put: `alias docker=podman`.
linux open-source virt
Prevoty Application Monitoring & Protection (AMP)
Prevoty enables DevOps to inject security into your web applications and web services. Protection is provided at runtime from within the application itself, and stays with the app regardless of deployment method (cloud, on-premises, etc). Applications are protected against threats including XSS, SQLi, CSRF, command injection, etc. Works with Puppet, Chef, Ansible, Docker, Splunk, QRadar, ELK, and many others.
linux windows osx bsd commercial go java net nodejs perl php python ruby monitoring security hardening chef puppet ansible metrics-visualization ci
Raygun
Raygun keeps a watchful eye on your web and mobile applications and tells you when problems arise.
windows linux osx open-source python nodejs java ruby errors
Rollbar
Detect, diagnose and defeat errors.
linux windows osx nodejs open-source ruby php java python errors
rtk
rkt is an application container engine developed for modern production cloud-native environments. It features a pod-native approach, a pluggable execution environment, and a well-defined surface area that makes it ideal for integration with other systems.
linux open-source virt
Sentry
Automate error tracking to find and fix issues before your users even experience a crash. Sentry is open-source, real-time, and loved by 100,000 developers around the world.
osx windows linux open-source errors nodejs ruby python php java monitoring
Snitch
SaaS SSL monitoring and alerting. Snitch audits for revocation, expiration, changes to the certificate, known security vulnerabilities, and best practices. Snitch worries about your SSL/TLS certificate so you don't have to
monitoring commercial linux windows freebsd bsd solaris osx metrics security hardening
SSH KeyBox
An open-source jump box solution with auditing capabilities
linux open-source cloud monitoring security java
Supervisord Monitor
Supervisord Monitor is multi server monitoring tool for supervisor - watch, start and stop all your supervisord instances and servvices from one place.
linux windows osx open-source monitoring provisioning php process-mgmt
Supervisor
Supervisor can manage application processes. It can start and stop a group of processes, restart processes if any of them terminate (keep-alive), start multiple instances of the same process (process pooling), automatically manage PID files, and much more! Very useful if you need to manage multiple processes for your application.
linux osx open-source process-mgmt python
System Integrety Management Platform
SIMP is an enterprise ready, full-featured, infrastructure framework designed around policy compliance and enforcement over time. It aims to be an open source practical reference implementation for both policy and best security practice able to run in both enclave and cloud environments.
config-mgmt linux open-source security hardening puppet nist-800-53 disa-stig fips compliance automation framework
TeamPass
TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment.
linux windows osx bsd solaris open-source security
testssl.sh
A command-line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for your "is this good or bad" decision.
linux osx open-source security shell
Tinfoil Security
Thorough web application security testing, with an extensive API, easy to hook into CI and issue tracking tools.
linux windows osx free commercial ci monitoring security
tsuru
tsuru is an extensible and open source Platform as a Service (PaaS) that makes application deployments faster and easier. Its built upon Docker and allows you easily manage and scale your applications.
linux open-source virt cloud-paas go
VAddy
VAddy integrates with your existing CI tools and performs robust security checks. Cloud-Based Service Automates Security Tests for DevOps Teams.
linux windows osx free commercial ci cloud security
Vagrant Cachier
A Vagrant plugin that helps you reduce the amount of coffee you drink while waiting for boxes to be provisioned by sharing a common package cache among similiar VM instances.
linux windows osx open-source virt artifacts ruby
Vagrant
Vagrant is a cross platform tool to create, boot, configure and destroy development environments. It provides a simple configuration-based approach to take a base image, boot it up, provision it (using any other provisioners), SSH, port forward, and much more. It automates the process of booting up and configuring virtual machines. It supports various providers like VirtualBox, VMWare, AWS, LXC, etc.
linux windows osx open-source virt provisioning ruby
Vault
Manage Secrets and Protect Sensitive Data. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.
linux windows osx bsd solaris open-source comercial security
Vaurien
A Chaos Monkey for TCP, it randomly disconnects or stalls TCP connections in your application to test application tolerance and high availability. Makes sure you correctly handle these unexpected events
linux windows osx open-source security python
Veewee
veewee is a great tool for building Virtual Machine images (aka base boxes). It automates most of the steps and allows you to easily create readymade images for VirtualBox/Vagrant, VMWare Fusion, KVM and Parallels. No longer need to shy away from building custom VM images!
linux osx windows open-source virt packaging ruby
Verdaccio
Verdaccio is an open-source local repository for NPM packages. It provides private-access packages, caching, and overriding public packages.
linux windows osx bsd solaris open-source free packaging artifacts
Weave
Weave creates a virtual network that connects Docker containers deployed across multiple hosts. Services provided by application containers on the weave network can be made accessible to the outside world, regardless of where those containers are running. Similarly, existing internal systems can be exposed to application containers irrespective of their location.
linux open-source virt cloud-paas orchestration service-discovery go
werf
werf is CI/CD tool for building Docker images and delivering them to Kubernetes using a GitOps approach. It integrates with any existing CI systems including GitLab CI, GitHub Actions, etc.
linux windows osx open-source ci kubernetes virt go