Akeyless Vault

Secrets Management: Automate Secrets across your DevOps tools and cloud platforms using a secured vault for credentials, tokens, API-Keys and passwords.

     

linux windows osx bsd solaris free commercial security

Ansible

A versatile orchestration engine that can automate systems and apps. Instead of a custom scripting language or code, it is very simple and shell based. It is also agent-less, so you can just start using it right away and get things done

     

linux open-source provisioning config-mgmt orchestration python

Assimilation System Management Suite

The Assimilation Suite discovers systems, services, network connections, configuration and dependencies, IP and MAC addresses. This all goes into a continually updated graph-based configuration management database (CMDB). This is then compared and scored against best practices, services and servers are monitored - all with near-zero configuration - in a way that scales to hundreds of thousands of servers. It also provides visualization tools, APIs for sending alerts to humans and other systems, and a variety of canned reports (queries) to aid in securing and managing systems, hooking into ChatOps, and creating plans for triaging your security issues

     

linux open-source commercial C shell python config CMDB service-discovery monitoring visualization security hardening

Bastillion

Bastillion is an open-source web-based SSH console that centrally manages administrative access to systems. A bastion host for administrators with features that promote infrastructure security, including key management and auditing.

     

linux open-source security

Batou

Batou makes it easy to perform automated deployments. It combines Fabric's simplicty and SSH automation, with Puppet's declarative syntax and idempotence

     

linux open-source provisioning python

Bolt

Bolt is an open source orchestration tool that automates the manual work it takes to maintain your infrastructure. Use Bolt to automate tasks that you perform on an as-needed basis or as part of a greater orchestration workflow. For example, you can use Bolt to patch and update systems, troubleshoot servers, deploy applications, or stop and restart services. Bolt can be installed on your local workstation and connects directly to remote targets with SSH or WinRM, so you are not required to install any agent software.

     

linux open-source provisioning config-mgmt orchestration ruby

Boxen

Boxen automates the entire process of setting up a Mac development environment. It can clone your project, install toolchains, apply security policies, clone your dotfiles and much more.

     

osx open-source provisioning ruby

Brood

A Deployment framework written in PHP. Can deploy to multiple servers using Gearman.

     

linux windows osx open-source provisioning php

Brooklyn

A Java based deployment tool, focused on both deployment as well as post-deploy lifecycle management. It is aware of network topologies, integrates with many cloud and PaaS APIs, and is designed to handle the entire roll-out

     

linux windows osx open-source provisioning orchestration java

bugsnag

Monitor everything you're building.

     

windows linux osx open-source ruby java python php nodejs errors

Cloud Application Manager

Cloud Application Manager is a software-defined managed services orchestration platform that enables the configuration, deployment, management and automation of applications within public, private and hybrid IT environments.

     

linux osx solaris windows commercial cloud-paas config-mgmt provisioning orchestration

Capistrano

The Ruby equivalent of Fabric, Capistrano is a Ruby framework to configure and run deployment or system administration tasks on local or remote machines. It extends the Rake DSL to define tasks, and can group tasks by Roles.

     

linux osx open-source provisioning orchestration ruby

Cisco Cloud Center

Use Cisco CloudCenter (formerly CliQr) to more securely deploy and manage applications in data center, private cloud, and public cloud environments. This application-centric cloud management solution helps you modernize your data center or add public cloud application deployment to your service offering.

     

linux windows provisioning orchestration automation scaling commercial

Cft

Cft watches as you make changes to your server, and then creates puppet manifests for the resulting actions. Simplifies creating puppet configuration.

     

linux open-source config-mgmt provisioning orchestration

Checkov

Infrastructure as Code security scanner supporting Kubernetes, Helm, Terraform, CloudFormation, ARM templates and more.

     

linux windows osx open-source security

Chef

Configuration management tool which uses a pure-Ruby, domain-specific language (DSL) for writing system configuration recipes. Supports Linux, UNIX, Windows, and AIX as first-class citizens for management.

     

linux windows open-source provisioning config-mgmt ruby

Cloudify

Cloudify is a pure play, open source cloud orchestration and automation software. It's used for a variety of needs, from autonomous application management, to uses like NFV orchestration. It was built from the bottom up as a cloud orchestration framework, and is built to be pluggable to any infrastructure. Its also the most extensive implementation of TOSCA, which makes it completely technology agnostic.

     

linux windows osx open-source provisioning orchestration automation scaling open-source free commercial

COBBLER

Cobbler is a Linux installation server that allows for rapid setup of network installation environments. It glues together and automates many associated Linux tasks so you do not have to hop between many various commands and applications when deploying new systems, and, in some cases, changing existing ones. Cobbler can help with provisioning, managing DNS and DHCP, package updates, power management, configuration management orchestration, and much more.

     

linux open-source config-mgmt provisioning orchestration

Crossplane

Crossplane, a Cloud Native Computing Foundation sandbox project, is an open source Kubernetes add-on that extends any cluster with the ability to provision and manage cloud infrastructure, services, and applications using kubectl, GitOps, or any tool that works with the Kubernetes API.

     

linux windows osx open-source provisioning orchestration automation open-source free commercial

Deliver

A pure bash-based deployment tool with virtually no dependencies except the shell.

     

linux open-source provisioning ruby

Deployinator

A simple, rack-based deployment framework

     

linux open-source provisioning orchestration ruby

Docker

Docker uses LXC to create and manage native, sandboxed virtual containers. LXC containers acts like a separate OSes, can install their own packages without affecting anything else, and overall have almost the same flexibility of VMs but without any of the virtualization overhead! Docker adds a ton of features, like an elegant configuration file that automates many things (like port forwarding, disk/directory mounting, networking, etc), a way to create and share readymade images that can be distributed as appliances, etc.

     

linux open-source virt cloud-paas provisioning go

Dokku Alt

Dokku on Steroids. The smallest PaaS implementation you've ever seen. It's fork of original dokku. The idea behind this fork is to provide complete solution with plugins covering most of use-cases which are stable and well tested.

     

linux open-source virt cloud-paas provisioning shell?

Dokku

It uses docker, git-receive and a few other lightweight and clever libraries to build a quick PaaS, all around just 100 lines of code! An excellent small tool to get started with PaaS systems. The same developer is creating a larger scale, production quality system called Flynn.

     

linux open-source virt cloud-paas provisioning shell?

FAI

Fully Automatic Installation (FAI) is a tool for mass unattended deployment of Linux. You can take one or more virgin PCs, turn on the power, and after a few minutes, the systems are installed and completely configured.

     

linux open-source config-mgmt provisioning perl

Foreman

A complete lifecycle management tool for servers, both self-hosted and in the cloud. It allows you to create and manage instances, build and deploy images, view and audit hosts, and much more! It works with Puppet or Chef, and has multiple interaction facilities like a web frontend, CLI and a RESTful API.

     

linux open-source virt config-mgmt provisioning monitoring cloud-paas ruby

Gauntlt

Gauntlt provides hooks to a variety of security tools and puts them within reach of security, dev and ops teams to collaborate to build rugged software. It is built to facilitate testing and communication between groups and create actionable tests that can be hooked into your deploy and testing processes.

     

linux open-source security hardening ruby

Harbor

Harbor is an open source cloud native registry that stores, signs, and scans container images for vulnerabilities. Harbor solves common challenges by delivering trust, compliance, performance, and interoperability. It fills a gap for organizations and applications that cannot use a public or cloud-based registry, or want a consistent experience across clouds.

     

linux open-source security hardening

Hardening Framework

The Hardening Framework combines DevOps with security by adding a security layer into your automation framework, that configures your operating systems and services. It takes care of difficult settings, compliance guidelines, cryptography recommendations, and secure defaults. Works great with Puppet, Chef and Ansible.

     

linux open-source security hardening chef puppet ansible

Intelliment Security Policy Automation

Intelliment is a platform to allow enterprises to automate their network security policy management in order to help them better handle their security at scale and to respond faster to network threats

     

linux commercial security orchestration provisioning networking firewall

Jenkins X

Jenkins X provides pipeline automation, built-in GitOps and preview environments to help teams collaborate and accelerate their software delivery at any scale.

     

linux windows osx open-source ci cd artifacts packaging provisioning

ĵeto

Streamline your web projects from development from production. Jeto is a web interface for several ReST APIs (nginx-api, vagrant-worker and htpasswd-api). With Ä´eto you add and manage (start/stop/provision) vagrant projects on the fly via a nice and easy to use web interface.

     

linux open-source cloud cloud-paas paas ci cd virt provisioning orchestration python

Juju

Juju is a free and libre orchestration service with a great web GUI, which provides easy scaling, automatic provisioning on a variety of providers including metal and Linux containers, and a community ecosystem of best-practice service definitions. Service files define 'interfaces' to allow easy specification and connection of backends or other dependencies.

     

linux open-source free provisioning orchestration scaling

LXD

LXD is a next generation system container manager. It offers a user experience similar to virtual machines but using Linux containers instead. It's image based with pre-made images available for a wide number of Linux distributions and is built around a very powerful, yet pretty simple, REST API.

     

linux open-source virt cloud-paas provisioning go

Netboot.xyz

Netboot.xyz is a preconfigured iPXE bootloader that completely eliminates the need for large ISO files for a vast range of operating systems.

     

linux windows osx bsd solaris open-source free commercial provisioning virt

NGINX Amplify

Amplify is free monitoring tool for NGINX. Amplify offers extended NGINX metric collection, visualization, monitoring, and a static analyzer for NGINX configuration. It's simple to set up, yet powerful enough to bring the much needed insight into NGINX performance. Amplify is a SaaS developed and operated by Nginx, Inc. Keep NGINX up to date and secure with a native monitoring solution.

     

linux bsd free commercial logging monitoring metrics visualization security hardening errors

NixOps

NixOps is a tool for deploying sets of NixOS Linux machines, either to real hardware or to virtual machines. It extends NixOS’s declarative approach to system configuration management to networks and adds provisioning.

     

linux open-source provisioning

Opskeleton

Bootstrap a DevOps infrastructure with some opinionated defaults (vagrant, puppet, librarian-puppet, git, etc), standard development guidelines, etc. Makes it very quick to get a DevOps team up and running

     

linux open-source scm virt config-mgmt provisioning orchestration ruby

Orc

A model driven orchestration tool for deployment of application clusters

     

linux windows osx open-source provisioning orchestration ruby

ossec

OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows

     

open-source security hardening linux windows solaris osx bsd

Zed Attack Proxy (ZAP)

A penetration testing tool for finding vulnerabilities in web applications, from OWASP

     

linux windows osx open-source security

Poni

A system management and provisioning tool, with centralized configuration management

     

linux open-source config-mgmt provisioning orchestration python

Prevoty Application Monitoring & Protection (AMP)

Prevoty enables DevOps to inject security into your web applications and web services. Protection is provided at runtime from within the application itself, and stays with the app regardless of deployment method (cloud, on-premises, etc). Applications are protected against threats including XSS, SQLi, CSRF, command injection, etc. Works with Puppet, Chef, Ansible, Docker, Splunk, QRadar, ELK, and many others.

     

linux windows osx bsd commercial go java net nodejs perl php python ruby monitoring security hardening chef puppet ansible metrics-visualization ci

Rancher

Rancher is open source software that provides a complete infrastructure platform for running Docker in production.

     

linux open-source provisioning orchestration scaling service-discovery

Raygun

Raygun keeps a watchful eye on your web and mobile applications and tells you when problems arise.

     

windows linux osx open-source python nodejs java ruby errors

Razor

Razor is next generation provisioning software that handles bare metal hardware and virtual server provisioning

     

linux open-source provisioning ruby

Rollbar

Detect, diagnose and defeat errors.

     

linux windows osx nodejs open-source ruby php java python errors

SaltStack

Salt is a powerful and different approach to infrastructure management, by focusing on high speed communications between large number of systems, and can perform orchestration, remote code execution and much more.

     

linux windows osx open-source commercial config-mgmt provisioning orchestration python

Sentry

Automate error tracking to find and fix issues before your users even experience a crash. Sentry is open-source, real-time, and loved by 100,000 developers around the world.

     

osx windows linux open-source errors nodejs ruby python php java monitoring

Shippable

CI/CD and DevOps automation platform with Docker support that simplifies provisioning, building, testing, and deploying any application anywhere.

     

linux free commercial ci cd provisioning orchestration config-management

ShutIt

ShutIt is an automation platform. It makes it easy to create simple modular automation scripts that handle differing output, install software, log in and out of servers, capture output etc.. ShutItFiles are an extension to make it even easier for people to develop automation scripts.

     

linux open-source config-mgmt provisioning python

Simp

Compliance automation

     

linux open-source security

Snitch

SaaS SSL monitoring and alerting. Snitch audits for revocation, expiration, changes to the certificate, known security vulnerabilities, and best practices. Snitch worries about your SSL/TLS certificate so you don't have to

     

monitoring commercial linux windows freebsd bsd solaris osx metrics security hardening

Soloist

Soloist lets you quickly and easily converge Chef recipes using chef-solo.

     

linux windows osx open-source provisioning ruby

SSH KeyBox

An open-source jump box solution with auditing capabilities

     

linux open-source cloud monitoring security java

StackStorm

A platform for event-driven automation. StackStorm allows you to integrate and automate across services and tools. It ties together your existing infrastructure and application environment so you can more easily automate that environment -- with a particular focus on taking actions in response to events.

     

automation cd provisioning cloud orchestration config-mgmt orchestration python linux open-source apache2

Sunzi

A shell-based pure provisioning tool which doesn’t try to do anything else. Has no dependencies other than the shell

     

linux open-source provisioning shell

Supervisord Monitor

Supervisord Monitor is multi server monitoring tool for supervisor - watch, start and stop all your supervisord instances and servvices from one place.

     

linux windows osx open-source monitoring provisioning php process-mgmt

System Integrety Management Platform

SIMP is an enterprise ready, full-featured, infrastructure framework designed around policy compliance and enforcement over time. It aims to be an open source practical reference implementation for both policy and best security practice able to run in both enclave and cloud environments.

     

config-mgmt linux open-source security hardening puppet nist-800-53 disa-stig fips compliance automation framework

TeamPass

TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment.

     

linux windows osx bsd solaris open-source security

testssl.sh

A command-line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for your "is this good or bad" decision.

     

linux osx open-source security shell

Tinfoil Security

Thorough web application security testing, with an extensive API, easy to hook into CI and issue tracking tools.

     

linux windows osx free commercial ci monitoring security

VAddy

VAddy integrates with your existing CI tools and performs robust security checks. Cloud-Based Service Automates Security Tests for DevOps Teams.

     

linux windows osx free commercial ci cloud security

Vagrant

Vagrant is a cross platform tool to create, boot, configure and destroy development environments. It provides a simple configuration-based approach to take a base image, boot it up, provision it (using any other provisioners), SSH, port forward, and much more. It automates the process of booting up and configuring virtual machines. It supports various providers like VirtualBox, VMWare, AWS, LXC, etc.

     

linux windows osx open-source virt provisioning ruby

Vault

Manage Secrets and Protect Sensitive Data. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.

     

linux windows osx bsd solaris open-source comercial security

Vaurien

A Chaos Monkey for TCP, it randomly disconnects or stalls TCP connections in your application to test application tolerance and high availability. Makes sure you correctly handle these unexpected events

     

linux windows osx open-source security python