cloud
Kubernetes Native Policy Management.
Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. Kyverno policies are Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.
Related contents:
- Vos politiques de conformité sur Kubernetes avec Kyverno @ Zwindler's Reflection :fr:.
- Understanding Kyverno: Enhancing Kubernetes Security with Policy Enforcement @ Jyothi Ram's blog.
- Using the Kyverno CLI to Write Policy Test Cases @ The New Stack.
- Simplify Kubernetes Security With Kyverno and OPA Gatekeeper @ The New Stack.
- Announcing Kyverno Release 1.15! @ CNCF.
Lambda function that streamlines containment of an AWS account compromise.
AWS Kill Switch is a Lambda function (and proof of concept client) that an organization can implement in a dedicated "Security" account to give their security engineers the ability to delete IAM roles or apply a highly restrictive service control policy (SCP) on any account in their organization.
open source big data platform.
Trunk Data Platform is an Open Source, free, Hadoop distribution.
Cloud-Native API Gateway.
Apache APISIX provides rich traffic management features like Load Balancing, Dynamic Upstream, Canary Release, Circuit Breaking, Authentication, Observability, etc.
The ultimate multi-model database. Develop easier. Build faster. Scale quicker.
SurrealDB is an end-to-end cloud-native database designed for modern applications, including web, mobile, serverless, Jamstack, backend, and traditional applications. With SurrealDB, you can simplify your database and API infrastructure, reduce development time, and build secure, performant apps quickly and cost-effectively.
Bring your code, we'll handle the rest.
Made for any language, for projects big and small. Railway is the cloud that takes the complexity out of shipping software.
The Platform Powering the API World. 🦍 The Cloud-Native API Gateway.
Kong or Kong API Gateway is a cloud-native, platform-agnostic, scalable API Gateway distinguished for its high performance and extensibility via plugins.
By providing functionality for proxying, routing, load balancing, health checking, authentication (and more), Kong serves as the central layer for orchestrating microservices or conventional API traffic with ease.
Serverless, Fault-Tolerant, Branchable Postgres.
The fully managed multi-cloud Postgres with a generous free tier. We separated storage and compute to offer autoscaling, branching, and bottomless storage.
Collaboratively transforming network infrastructure by leveraging: Open Source Software, Cloud-Native and SDN Technologies, Disaggregation and White Box Hardware.
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Tools to support cloud guardrails implementation and compliance checks for Microsoft Azure.
Parallel S3 and local filesystem execution tool.
s5cmd is a very fast S3 and local filesystem execution tool. It comes with support for a multitude of operations including tab completion and wildcard support for files, which can be very handy for your object storage workflow while working with large number of files.
Wolfi is a community Linux OS designed for the container and cloud-native era. Chainguard started the Wolfi project to enable building Chainguard Images, our collection of curated distroless images that meet the requirements of a secure software supply chain. This required a Linux distribution with components at the appropriate granularity and with support for both glibc and musl, something that was not yet available in the cloud-native Linux ecosystem.
The fully transactional, cloud-ready, distributed database.
Build flexible, distributed systems that can leverage the entire history of your critical data, not just the most current state. Build them on your existing infrastructure or jump straight to the cloud.
PowerDNS is a leading provider of secure open-source and commercial DNS software. PowerDNS solutions are focused on large-scale DNS service providers, including mobile and fixed-line broadband operators, and hosting and cloud service providers. PowerDNS also underpins scalable security solutions from market-leading vendors.
Related contents:
The serverless database built for modern development.
Your database should be easy to use, not a source of frustration. Xata easily integrates into your developer workflow, providing the best data experience for Github, Vercel and Netlify based deployments.
A fully functional local cloud stack. Develop and test your cloud and serverless apps offline!
LocalStack is an easy-to-use test/mocking framework for developing cloud applications. Using LocalStack, you can spin up a local test environment in seconds, and get the same functionality you would get from a real AWS environment.
RedCloud OS is a Debian based Cloud Adversary Simulation Operating System for Red Teams to assess the security of leading Cloud Service Providers (CSPs). It includes tools optimized for adversary simulation tasks within Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
A simple, easy-to-use, elegant open-source personal cloud system. Community-based open source software focused on delivering simple personal cloud experience around Docker ecosystem.
Free Cloud Encryption for Dropbox & Co.
Cryptomator offers multi-platform transparent client-side encryption of your files in the cloud.
Related contents:
Cross-platform backup tool for Windows, macOS & Linux with fast, incremental backups, client-side end-to-end encryption, compression and data deduplication. CLI and GUI included.
Kopia is a fast and secure open-source backup/restore tool that allows you to create encrypted snapshots of your data and save the snapshots to remote or cloud storage of your choice, to network-attached storage or server, or locally on your machine. Kopia does not 'image' your whole machine. Rather, Kopia allows you to backup/restore any and all files/directories that you deem are important or critical.
Open-Source, cloud-Native Storage for Kubernetes. Production ready management for File, Block and Object Storage.
Rook is an open source cloud-native storage orchestrator for Kubernetes, providing the platform, framework, and support for Ceph storage to natively integrate with Kubernetes.
Ceph is a distributed storage system that provides file, block and object storage and is deployed in large scale production clusters.
Open Interoperable HCI with Harvester. Harvester is the next generation of hyperconverged infrastructure designed for the modern cloud-native environment. Completely open-source and free to use, Harvester easily integrates into Rancher helping operators consolidate workloads and reduce the complexity of their infrastructure.
XetHub brings speedy access and Git-based collaboration to large scale repositories of data, code, or any combination of files. Our instant mount feature makes it possible to access GBs and TBs of data in seconds at the speed of localhost, while our de-duplication algorithm stores data and differences efficiently to save money and speed up development cycles. XetHub is ideal for teams who already use Git to track their code changes, and want to leverage the power of infinite history, pull requests, and difference-based tracking for larger assets such as datasets or media files. Managing complete projects with familiar Git semantics makes change tracking and continuous integration a breeze, especially for workflows that use code to generate or augment assets.
Most Powerful Cross Browser Testing Tool Online. Cross Browser Testing Cloud. Browser & app testing cloud to perform both exploratory and automated testing across 3000+ different browsers, real devices and operating systems.
XCP-ng is a virtualization platform based on Xen Source and Citrix® Hypervisor (formerly XenServer). XCP-ng stands for Xen Cloud Platform - New Generation and is a tribute to the old Open Source project XCP, which was abandoned when XenServer was open-sourced in 2013.
The Most Widely Deployed Open Source Cloud Software in the World. Deployed by thousands. Proven production at scale. OpenStack is a set of software components that provide common services for cloud infrastructure.
Sylva main objective is to release a cloud native infrastructure stack to host Telco (5G, OpenRAN, CDN, etc.) and Edge use cases.
IT Management Software and Observability Platform. Full-stack observability solutions for cloud, hybrid, and on-premises.
ORAS works similarly to docker. It allows you to push (upload) and pull (download) things to and from an OCI Registry, and also handles login (authentication) and token flow (authorization). What ORAS does differently is shift the focus from container images to other types of artifacts.
Related contents:
Cloud native distributed block storage for Kubernetes. Longhorn is a distributed block storage system for Kubernetes. Longhorn is cloud native storage built using Kubernetes and container primitives.
Related contents:
Detect security threats in real time
Falco is a cloud-native security tool designed for Linux systems. It employs custom rules on kernel events, which are enriched with container and Kubernetes metadata, to provide real-time alerts. Falco helps you gain visibility into abnormal behavior, potential security threats, and compliance violations, contributing to comprehensive runtime security.
Related contents:
Delta Lake is an open-source storage framework that enables building a Lakehouse architecture with compute engines including Spark, PrestoDB, Flink, Trino, and Hive and APIs for Scala, Java, Rust, Ruby, and Python.
Confidential Containers is an open source community working to enable cloud native confidential computing by leveraging Trusted Execution Environments to protect containers and data.
Responsive browser-based gaming powered by feeds.
Games natively execute within the browser across a wide variety of platforms as directed by cloud-based gaming feeds.
A simple, easy-to-use, elegant open-source home cloud system Community-based open source software focused on delivering simple home cloud experience around Docker ecosystem.
Horizontally scalable, highly available, multi-tenant, long term storage for Prometheus.
Rclone is a command-line program to manage files on cloud storage. It is a feature-rich alternative to cloud vendors' web storage interfaces. Over 40 cloud storage products support rclone including S3 object stores, business & consumer file storage services, as well as standard transfer protocols.
The end-to-end development and testing platform for Kubernetes and Cloud
Garden is an end-to-end cloud delivery platform that accelerates your development, testing and CI/CD workflows.
Get realistic environments on demand, rapidly iterate while coding, and efficiently run tests from anywhere. One tool, one configuration, from source to finish.
GlusterFS is a scale-out network-attached storage file system. It has found applications including cloud computing, streaming media services, and content delivery networks. GlusterFS was developed originally by Gluster, Inc. and then by Red Hat, Inc., as a result of Red Hat acquiring Gluster in 2011.
Related contents:
High Performance, Kubernetes Native Object Storage. MinIO offers high-performance, S3 compatible object storage. Native to Kubernetes, MinIO is the only object storage suite available on every public cloud, every Kubernetes distribution, the private cloud and the edge. MinIO is software-defined and is 100% open source under GNU AGPL v3.
Cloud-init is the industry standard multi-distribution method for cross-platform cloud instance initialization. It is supported across all major public cloud providers, provisioning systems for private cloud infrastructure, and bare-metal installations.
CryFS encrypts your files, so you can safely store them anywhere. It works well together with cloud services like Dropbox, iCloud, OneDrive and others.
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices. It checks security settings according to the profiles the user creates and changes them to recommended settings based on the CIS AWS Benchmark source at request of the user.
Cloud-Hosted Content Management Platform, API-First CMS. API-first CMS for building content-powered apps in any programming language.
The Developer Friendly Container & Microservices Platform
Built to maximize developer happiness. Works on any cloud, easy to setup, simple to use.
Blox is a collection of open source projects for container management and orchestration on Amazon ECS
Blox gives you more control over how your containerized applications run on Amazon ECS. It enables you to build schedulers and integrate third-party schedulers on top of ECS, while leveraging Amazon ECS to fully manage and scale your clusters.
The package manager for Kubernetes Helm is the best way to find, share, and use software built for Kubernetes. What is Helm?
Helm helps you manage Kubernetes applications — Helm Charts helps you define, install, and upgrade even the most complex Kubernetes application.
Charts are easy to create, version, share, and publish — so start using Helm and stop the copy-and-paste madness.
Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.
CDNs and cloud services cost money to setup and maintain. This scales asset availability with popularity, automatically, for free, with minimal setup.
Modern Open Source Build Automation.
Gradle is a build tool with a focus on build automation and support for multi-language development. If you are building, testing, publishing, and deploying software on any platform, Gradle offers a flexible model that can support the entire development lifecycle from compiling and packaging code to publishing web sites. Gradle has been designed to support build automation across multiple languages and platforms including Java, Scala, Android, Kotlin, C/C++, and Groovy, and is closely integrated with development tools and continuous integration servers including Eclipse, IntelliJ, and Jenkins.
Related contents:
Skydive is an open source real-time network topology and protocols analyzer. It aims to provide a comprehensive way of understanding what is happening in the network infrastructure.
Skydive agents collect topology informations and flows and forward them to a central agent for further analysis. All the informations a stored in an Elasticsearch database.
Skydive is SDN-agnostic but provides SDN drivers in order to enhance the topology and flows informations. Currently only the Neutron driver is provided but more drivers will come soon.
Accelerating product delivery in the Digital Economy through Continuous Application Lifecycle Management of Cloud-based Workload, backed by @WalmartLabs
Apache Mesos abstracts CPU, memory, storage, and other compute resources away from machines (physical or virtual), enabling fault-tolerant and elastic distributed systems to easily be built and run effectively. Mesos is built using the same principles as the Linux kernel, only at a different level of abstraction. The Mesos kernel runs on every machine and provides applications (e.g., Hadoop, Spark, Kafka, Elastic Search) with API’s for resource management and scheduling across entire datacenter and cloud environments.
Sandstorm is an open source operating system for personal and private clouds. Sandstorm is an open source platform for self-hosting web apps.
Sandstorm is a self-hostable web productivity suite. It's implemented as a security-hardened web app package manager.
ONLYOFFICE™ is a multifunctional office suite that enables you to store and co-edit documents, manage projects, email correspondence and customer relations in one place. ONLYOFFICE comprises three separate servers: Document Server, Community Server and Mail Server. The most reliable way to run them is to use Docker containers. Click the button below to go to Docker Hub and install them all at once.
Develop, Host, and Scale Your Apps in the Cloud The Open Hybrid Cloud Application Platform by Red Hat