Wazuh is an open source tool used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments.

https://github.com/wazuh/wazuh

cdebug looks like a handy tool for debugging running containers. Support for several container runtimes, and tools for running a shell, exporting filesystems and forwarding ports to localhost.

https://iximiuz.ck.page/posts/container-tools-tips-and-tricks-issue-2
https://github.com/iximiuz/cdebug

Hurl is a neat HTTP testing tool. A simple DSL for writing assertions against web responses, including APIs, and testing those assertions.

https://github.com/Orange-OpenSource/hurl

Cocacetic is a brand new tool that can patch a running container quickly without going upstream for a full rebuild. It takes input from vulnerability scanners to inform what needs updating.

https://github.com/project-copacetic/copacetic

Klotho looks an interesting, and powerful, tool for taking an application and running it using native AWS services. Simply annotate a standard HTTP service and it will automatically generate the code to configure the relevant AWS services for serving and data persistence.

https://github.com/klothoplatform/klotho
https://klo.dev/

PolarStreams is a lightweight, elastic, Kubernetes-native event streaming system. It acts as a persistent buffer between services providing at-least-once delivery guarantees.

https://github.com/polarstreams/polar

Open Threat Model (OTM) defines a schema for defining the threat model of any system. Would be interesting to see tools built around this.

https://github.com/iriusrisk/OpenThreatModel