OpenSecAtlas
OPENSECATLAS
11/12 free views
Tool
CLI
DevSecOps Tools

raven

by CycodeLabs

664stars
38forks
9watchers
Updated 8 months ago
About

Raven is a CI/CD security analyzer that automates vulnerability and cloud configuration scanning to enhance DevSecOps workflows.

CI/CD Security Analyzer

Primary Use Case

Raven is designed for DevOps and security teams to integrate automated security checks into their CI/CD pipelines, ensuring early detection of vulnerabilities and misconfigurations. It helps maintain secure code deployments by scanning infrastructure and application configurations continuously during development and deployment stages.

Key Features
  • Automated security scanning integrated into CI/CD pipelines
  • Vulnerability detection for code and dependencies
  • Cloud configuration scanning to identify misconfigurations
  • Security automation to enforce DevSecOps best practices
  • Open source with Apache 2.0 license
  • Community-driven as part of Cygives security tools hub

Installation

  • Clone the repository: git clone https://github.com/CycodeLabs/raven.git
  • Navigate to the project directory: cd raven
  • Follow language-specific build or install instructions (not explicitly provided in README snippet)
  • Integrate Raven into your CI/CD pipeline as per your environment requirements

Usage

>_ raven scan

Runs a security scan on the current project or specified target within the CI/CD pipeline.

>_ raven --help

Displays help information and available commands for the Raven tool.

Security Frameworks
Reconnaissance
Initial Access
Defense Evasion
Discovery
Collection
Usage Insights
  • Integrate Raven into CI/CD pipelines to enable early vulnerability detection and reduce attack surface.
  • Use automated cloud configuration scanning to prevent misconfigurations that adversaries could exploit.
  • Combine with runtime security tools to create a comprehensive DevSecOps security posture.
  • Leverage Raven’s open-source nature to customize scanning rules tailored to organizational policies.
  • Employ Raven in purple team exercises to simulate attacker techniques and validate detection controls.

Docs Take 2 Hours. AI Takes 10 Seconds.

Ask anything about raven. Installation? Config? Troubleshooting? Get answers trained on real docs and GitHub issues—not generic ChatGPT fluff.

This tool hasn't been indexed yet. Request indexing to enable AI chat.

Admin will review your request within 24 hours

Security Profile
Red Team60%
Blue Team80%
Purple Team70%
Details
LicenseApache License 2.0
LanguagePython
Open Issues72
Topics
cicd
cycode
security
security-automation
security-tools

Related Tools

earthly icon

earthly

earthly/earthly

Framework

Super simple build framework with fast, repeatable builds and an instantly familiar syntax – like Dockerfile and Makefile had a baby.

11.8K
10 months ago
pull icon

pull

wei/pull

Tool

🤖 Keep your forks up-to-date via automated PRs

6.6K
10 months ago
jx icon

jx

jenkins-x/jx

Tool

Jenkins X provides automated CI+CD for Kubernetes with Preview Environments on Pull Requests using Cloud Native pipelines from Tekton

4.6K
10 months ago
zizmor icon

zizmor

zizmorcore/zizmor

Tool

Static analysis for GitHub Actions

3.5K
3 months ago
garden icon

garden

garden-io/garden

Tool

Automation for Kubernetes development and testing. Spin up production-like environments for development, testing, and CI on demand. Use the same configuration and workflows at every step of the process. Speed up your builds and test runs via shared result caching

3.5K
10 months ago
okteto icon

okteto

okteto/okteto

Tool

Develop your applications directly in your Kubernetes Cluster

3.4K
10 months ago