Akeyless Vault

Secrets Management: Automate Secrets across your DevOps tools and cloud platforms using a secured vault for credentials, tokens, API-Keys and passwords.

     

linux windows osx bsd solaris free commercial security

Ansible

A versatile orchestration engine that can automate systems and apps. Instead of a custom scripting language or code, it is very simple and shell based. It is also agent-less, so you can just start using it right away and get things done

     

linux windows osx open-source provisioning config-mgmt orchestration python

Brooklyn

A Java based deployment tool, focused on both deployment as well as post-deploy lifecycle management. It is aware of network topologies, integrates with many cloud and PaaS APIs, and is designed to handle the entire roll-out

     

linux windows osx open-source provisioning orchestration java

Cloud Application Manager

Cloud Application Manager is a software-defined managed services orchestration platform that enables the configuration, deployment, management and automation of applications within public, private and hybrid IT environments.

     

linux osx solaris windows commercial cloud-paas config-mgmt provisioning orchestration

Capistrano

The Ruby equivalent of Fabric, Capistrano is a Ruby framework to configure and run deployment or system administration tasks on local or remote machines. It extends the Rake DSL to define tasks, and can group tasks by Roles.

     

linux osx open-source provisioning orchestration ruby

Checkov

Infrastructure as Code security scanner supporting Kubernetes, Helm, Terraform, CloudFormation, ARM templates and more.

     

linux windows osx open-source security

Cloudify

Cloudify is a pure play, open source cloud orchestration and automation software. It's used for a variety of needs, from autonomous application management, to uses like NFV orchestration. It was built from the bottom up as a cloud orchestration framework, and is built to be pluggable to any infrastructure. Its also the most extensive implementation of TOSCA, which makes it completely technology agnostic.

     

linux windows osx open-source provisioning orchestration automation scaling open-source free commercial

Crossplane

Crossplane, a Cloud Native Computing Foundation sandbox project, is an open source Kubernetes add-on that extends any cluster with the ability to provision and manage cloud infrastructure, services, and applications using kubectl, GitOps, or any tool that works with the Kubernetes API.

     

linux windows osx open-source provisioning orchestration automation open-source free commercial

Deploy Studio

An tools for re-imaging and provisioning OSX devices

     

osx provisioning orchestration config hardening

Fabric

Fabric is a python framework to configure deployment or system administration tasks, and then run those tasks on local or remote systems. It uses SSH heavily for interacting with remote systems, and uses Roles to group tasks

     

linux osx open-source orchestration python

Mina

A Ruby Rake-like DSL for fast deployment and automation, similar to Capistrano but faster and lesser overhead, since it creates only a single SSH connection for a deploy

     

linux osx open-source orchestration ruby

NGINX Amplify

Amplify is free monitoring tool for NGINX. Amplify offers extended NGINX metric collection, visualization, monitoring, and a static analyzer for NGINX configuration. It's simple to set up, yet powerful enough to bring the much needed insight into NGINX performance. Amplify is a SaaS developed and operated by Nginx, Inc. Keep NGINX up to date and secure with a native monitoring solution.

     

linux bsd free commercial logging monitoring metrics visualization security hardening errors

Nomad

Nomad is a lightweight workload orchestrator. It offers client instance scaling as well as workload scaling.

     

linux windows osx open-source virt orchestration go

Orc

A model driven orchestration tool for deployment of application clusters

     

linux windows osx open-source provisioning orchestration ruby

ossec

OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows

     

open-source security hardening linux windows solaris osx bsd

Zed Attack Proxy (ZAP)

A penetration testing tool for finding vulnerabilities in web applications, from OWASP

     

linux windows osx open-source security

Prevoty Application Monitoring & Protection (AMP)

Prevoty enables DevOps to inject security into your web applications and web services. Protection is provided at runtime from within the application itself, and stays with the app regardless of deployment method (cloud, on-premises, etc). Applications are protected against threats including XSS, SQLi, CSRF, command injection, etc. Works with Puppet, Chef, Ansible, Docker, Splunk, QRadar, ELK, and many others.

     

linux windows osx bsd commercial go java net nodejs perl php python ruby monitoring security hardening chef puppet ansible metrics-visualization ci

Rex

A agent-less server orchestration tool built on Perl

     

linux windows osx open-source orchestration perl

Rundeck

Turns your operational procedures into self-service portal. Define common operational tasks in the Rundeck web portal, and safely hand it over to the rest of the team so that they can perform these tasks without you being around.

     

linux windows osx open-source orchestration java

SaltStack

Salt is a powerful and different approach to infrastructure management, by focusing on high speed communications between large number of systems, and can perform orchestration, remote code execution and much more.

     

linux windows osx open-source commercial config-mgmt provisioning orchestration python

Serf

Serf is a service discovery and orchestration tool which is highly decentralized, highly available, fault tolerant, cross platform and extremely lightweight.

     

linux windows osx open-source orchestration go

Snitch

SaaS SSL monitoring and alerting. Snitch audits for revocation, expiration, changes to the certificate, known security vulnerabilities, and best practices. Snitch worries about your SSL/TLS certificate so you don't have to

     

monitoring commercial linux windows freebsd bsd solaris osx metrics security hardening

TeamPass

TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment.

     

linux windows osx bsd solaris open-source security

testssl.sh

A command-line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for your "is this good or bad" decision.

     

linux osx open-source security shell

Tinfoil Security

Thorough web application security testing, with an extensive API, easy to hook into CI and issue tracking tools.

     

linux windows osx free commercial ci monitoring security

VAddy

VAddy integrates with your existing CI tools and performs robust security checks. Cloud-Based Service Automates Security Tests for DevOps Teams.

     

linux windows osx free commercial ci cloud security

Vault

Manage Secrets and Protect Sensitive Data. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.

     

linux windows osx bsd solaris open-source comercial security

Vaurien

A Chaos Monkey for TCP, it randomly disconnects or stalls TCP connections in your application to test application tolerance and high availability. Makes sure you correctly handle these unexpected events

     

linux windows osx open-source security python

webhook

Configurable incoming webhook server

     

linux windows osx bsd solaris open-source ci cd orchestration