Pinned Repositories
dockerfile-bestpractice-rules
Some Semgrep rules for dockerfile best practices
java-xxe-vulnerability-search-semgrep-remediation
XXE vulnerability searched by semgrep, remediation and exploitaiton.
kdt
CLI to interact with Kondukto
kntrl
kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this by monitoring kernel calls, and denying access as soon as your defined behaviour is detected.
log4j-test
A sample Java project
okta-bcrypt-auth-bypass
Okta Authentication bypass explained
sbom-gradle-cyclonedx-pipeline-scan
SBOM generating with Syft & CycloneDX Plugins, Scan with osv-scanner and import on Kondukto with KDT
sbom-pipeline-example
This repo does contains an example of Jenkins/Github Pipeline and a Maven Project.
security-research
Kondukto Security Research Library
semgrep-rules
Custom semgrep rules registry
Kondukto's Repositories
kondukto-io/kntrl
kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this by monitoring kernel calls, and denying access as soon as your defined behaviour is detected.
kondukto-io/kdt
CLI to interact with Kondukto
kondukto-io/semgrep-rules
Custom semgrep rules registry
kondukto-io/dockerfile-bestpractice-rules
Some Semgrep rules for dockerfile best practices
kondukto-io/sbom-gradle-cyclonedx-pipeline-scan
SBOM generating with Syft & CycloneDX Plugins, Scan with osv-scanner and import on Kondukto with KDT
kondukto-io/sbom-pipeline-example
This repo does contains an example of Jenkins/Github Pipeline and a Maven Project.
kondukto-io/cx-postscan-action-runner
Helper scripts for Checkmarx post scan action to import results to Kondukto.
kondukto-io/java-xxe-vulnerability-search-semgrep-remediation
XXE vulnerability searched by semgrep, remediation and exploitaiton.
kondukto-io/kdt-action
kondukto-io/klog
Kondukto leveled simple logging library
kondukto-io/kondukto-secure-tunnel
kondukto-io/log4j-test
A sample Java project
kondukto-io/migrongo
Migrongo is a Go package designed to handle MongoDB migrations using JavaScript files and the mongosh shell.
kondukto-io/okta-bcrypt-auth-bypass
Okta Authentication bypass explained
kondukto-io/security-research
Kondukto Security Research Library
kondukto-io/simple-fuzzing
Companion repository that shows continuous fuzzing to secure APIs
kondukto-io/webhook-issue-manager
kondukto-io/monorepo-fsqio
A monorepo that holds all of Foursquare's opensource projects