Secrets Management: Automate Secrets across your DevOps tools and cloud platforms using a secured vault for credentials, tokens, API-Keys and passwords.
linux windows osx bsd solaris free commercial security
A versatile orchestration engine that can automate systems and apps. Instead of a custom scripting language or code, it is very simple and shell based. It is also agent-less, so you can just start using it right away and get things done
linux windows osx open-source provisioning config-mgmt orchestration python
The Assimilation Suite discovers systems, services, network connections, configuration and dependencies, IP and MAC addresses. This all goes into a continually updated graph-based configuration management database (CMDB). This is then compared and scored against best practices, services and servers are monitored - all with near-zero configuration - in a way that scales to hundreds of thousands of servers. It also provides visualization tools, APIs for sending alerts to humans and other systems, and a variety of canned reports (queries) to aid in securing and managing systems, hooking into ChatOps, and creating plans for triaging your security issues
linux open-source commercial C shell python config CMDB service-discovery monitoring visualization security hardening
Bastillion is an open-source web-based SSH console that centrally manages administrative access to systems. A bastion host for administrators with features that promote infrastructure security, including key management and auditing.
linux open-source security
Bolt is an open source commandline tool for executing commands, scripts, and orchestrated workflows on remote systems using SSH and WinRM
linux open-source provisioning config-mgmt orchestration ruby
A Java based deployment tool, focused on both deployment as well as post-deploy lifecycle management. It is aware of network topologies, integrates with many cloud and PaaS APIs, and is designed to handle the entire roll-out
linux windows osx open-source provisioning orchestration java
Cloud Application Manager is a software-defined managed services orchestration platform that enables the configuration, deployment, management and automation of applications within public, private and hybrid IT environments.
linux osx solaris windows commercial cloud-paas config-mgmt provisioning orchestration
The Ruby equivalent of Fabric, Capistrano is a Ruby framework to configure and run deployment or system administration tasks on local or remote machines. It extends the Rake DSL to define tasks, and can group tasks by Roles.
linux osx open-source provisioning orchestration ruby
Use Cisco CloudCenter (formerly CliQr) to more securely deploy and manage applications in data center, private cloud, and public cloud environments. This application-centric cloud management solution helps you modernize your data center or add public cloud application deployment to your service offering.
linux windows provisioning orchestration automation scaling commercial
Cft watches as you make changes to your server, and then creates puppet manifests for the resulting actions. Simplifies creating puppet configuration.
linux open-source config-mgmt provisioning orchestration
Cloudify is a pure play, open source cloud orchestration and automation software. It's used for a variety of needs, from autonomous application management, to uses like NFV orchestration. It was built from the bottom up as a cloud orchestration framework, and is built to be pluggable to any infrastructure. Its also the most extensive implementation of TOSCA, which makes it completely technology agnostic.
linux windows osx open-source provisioning orchestration automation scaling open-source free commercial
Cobbler is a Linux installation server that allows for rapid setup of network installation environments. It glues together and automates many associated Linux tasks so you do not have to hop between many various commands and applications when deploying new systems, and, in some cases, changing existing ones. Cobbler can help with provisioning, managing DNS and DHCP, package updates, power management, configuration management orchestration, and much more.
linux open-source config-mgmt provisioning orchestration
Securely manages privileged account credentials, such as root passwords, using Shamir secret sharing. Its like 1Password for DevOps.
linux open-source orchestration python
A simple, rack-based deployment framework
linux open-source provisioning orchestration ruby
An tools for re-imaging and provisioning OSX devices
osx provisioning orchestration config hardening
Fabric is a python framework to configure deployment or system administration tasks, and then run those tasks on local or remote systems. It uses SSH heavily for interacting with remote systems, and uses Roles to group tasks
linux osx open-source orchestration python
Gauntlt provides hooks to a variety of security tools and puts them within reach of security, dev and ops teams to collaborate to build rugged software. It is built to facilitate testing and communication between groups and create actionable tests that can be hooked into your deploy and testing processes.
linux open-source security hardening ruby
Harbor is an open source cloud native registry that stores, signs, and scans container images for vulnerabilities. Harbor solves common challenges by delivering trust, compliance, performance, and interoperability. It fills a gap for organizations and applications that cannot use a public or cloud-based registry, or want a consistent experience across clouds.
linux open-source security hardening
The Hardening Framework combines DevOps with security by adding a security layer into your automation framework, that configures your operating systems and services. It takes care of difficult settings, compliance guidelines, cryptography recommendations, and secure defaults. Works great with Puppet, Chef and Ansible.
linux open-source security hardening chef puppet ansible
Intelliment is a platform to allow enterprises to automate their network security policy management in order to help them better handle their security at scale and to respond faster to network threats
linux commercial security orchestration provisioning networking firewall
Juju simplifies how you configure, scale and operate today’s complex software. Juju deploys everywhere: to public or private clouds.
linux open-source free provisioning orchestration scaling
Kubernetes is a system for managing containerized applications across multiple hosts, providing basic mechanisms for deployment, maintenance, and scaling of applications
linux open-source virt orchestration go
A container orchestration platform for Mesos and DC/OS
linux open-source orchestration
A Ruby Rake-like DSL for fast deployment and automation, similar to Capistrano but faster and lesser overhead, since it creates only a single SSH connection for a deploy
linux osx open-source orchestration ruby
Nebula is a Docker orchestration tool designed to manage massive scale distributed clusters
linux open-source virt orchestration python
Amplify is free monitoring tool for NGINX. Amplify offers extended NGINX metric collection, visualization, monitoring, and a static analyzer for NGINX configuration. It's simple to set up, yet powerful enough to bring the much needed insight into NGINX performance. Amplify is a SaaS developed and operated by Nginx, Inc. Keep NGINX up to date and secure with a native monitoring solution.
linux bsd free commercial logging monitoring metrics visualization security hardening errors
A model driven orchestration tool for deployment of application clusters
linux windows osx open-source provisioning orchestration ruby
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows
open-source security hardening linux windows solaris osx bsd
A penetration testing tool for finding vulnerabilities in web applications, from OWASP
linux windows osx open-source security
Prevoty enables DevOps to inject security into your web applications and web services. Protection is provided at runtime from within the application itself, and stays with the app regardless of deployment method (cloud, on-premises, etc). Applications are protected against threats including XSS, SQLi, CSRF, command injection, etc. Works with Puppet, Chef, Ansible, Docker, Splunk, QRadar, ELK, and many others.
linux windows osx bsd commercial go java net nodejs perl php python ruby monitoring security hardening chef puppet ansible metrics-visualization ci
Rancher is open source software that provides a complete infrastructure platform for running Docker in production.
linux open-source provisioning orchestration scaling service-discovery
A agent-less server orchestration tool built on Perl
linux windows osx open-source orchestration perl
Turns your operational procedures into self-service portal. Define common operational tasks in the Rundeck web portal, and safely hand it over to the rest of the team so that they can perform these tasks without you being around.
linux windows osx open-source orchestration java
Salt is a powerful and different approach to infrastructure management, by focusing on high speed communications between large number of systems, and can perform orchestration, remote code execution and much more.
linux windows osx open-source commercial config-mgmt provisioning orchestration python
Sequencer can ping, power on and power off clusters of machines in your datacenter
linux open-source orchestration python
Serf is a service discovery and orchestration tool which is highly decentralized, highly available, fault tolerant, cross platform and extremely lightweight.
linux windows osx open-source orchestration go
CI/CD and DevOps automation platform with Docker support that simplifies provisioning, building, testing, and deploying any application anywhere.
linux free commercial ci cd provisioning orchestration config-management
linux open-source security
SaaS SSL monitoring and alerting. Snitch audits for revocation, expiration, changes to the certificate, known security vulnerabilities, and best practices. Snitch worries about your SSL/TLS certificate so you don't have to
monitoring commercial linux windows freebsd bsd solaris osx metrics security hardening
Snort is an open-source, free and lightweight network intrusion detection system (NIDS) software for Linux and Windows to detect emerging threats.
open-source security hardening
An open-source jump box solution with auditing capabilities
linux open-source cloud monitoring security java
A platform for event-driven automation. StackStorm allows you to integrate and automate across services and tools. It ties together your existing infrastructure and application environment so you can more easily automate that environment -- with a particular focus on taking actions in response to events.
automation cd provisioning cloud orchestration config-mgmt orchestration python linux open-source apache2
SIMP is an enterprise ready, full-featured, infrastructure framework designed around policy compliance and enforcement over time. It aims to be an open source practical reference implementation for both policy and best security practice able to run in both enclave and cloud environments.
config-mgmt linux open-source security hardening puppet nist-800-53 disa-stig fips compliance automation framework
TeamPass is a Collaborative Passwords Manager. Its aim is to provide the ability to share password items through a secured and managed environment.
linux windows osx bsd solaris open-source security
A command-line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It's designed to provide clear output for your "is this good or bad" decision.
linux osx open-source security shell
Thorough web application security testing, with an extensive API, easy to hook into CI and issue tracking tools.
linux windows osx free commercial ci monitoring security
VAddy integrates with your existing CI tools and performs robust security checks. Cloud-Based Service Automates Security Tests for DevOps Teams.
linux windows osx free commercial ci cloud security
Manage Secrets and Protect Sensitive Data. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API.
linux windows osx bsd solaris open-source comercial security
A Chaos Monkey for TCP, it randomly disconnects or stalls TCP connections in your application to test application tolerance and high availability. Makes sure you correctly handle these unexpected events
linux windows osx open-source security python
Weave creates a virtual network that connects Docker containers deployed across multiple hosts. Services provided by application containers on the weave network can be made accessible to the outside world, regardless of where those containers are running. Similarly, existing internal systems can be exposed to application containers irrespective of their location.
linux open-source virt cloud-paas orchestration service-discovery go
Configurable incoming webhook server
linux windows osx bsd solaris open-source ci cd orchestration