OpenSnitch is a GNU/Linux port of the Little Snitch application firewall

Cribl's purpose-built Observability Pipeline gives you the power to collect, reduce, transform, and route machine data from anywhere, to anywhere - from a single interface.

Middleware that can connect log sources and destinations, translating between formats (like syslog, Elastic/filebeat, Splunk)

BloodHound uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment. Attackers can use BloodHound to easily identify highly complex attack paths that would otherwise be impossible to quickly identify. Defenders can use BloodHound to identify and eliminate those same attack paths.

Also, Ransomulator: https://github.com/zeronetworks/BloodHound-Tools/tree/main/Ransomulator

ovh Bastion system, a Policy Enforcement Point for administrative ssh sessions

The biggest advantage of systemd service interface is that is offers a common interface to many distinct security features of Linux kernel in a single service definition, where they can be applied along with other service-specific flags.

on using signed ssh keys

Group of three articles on the Kubernetes authentication:

1. https://kublr.com/blog/kubernetes-rbac-101-overview/
2. https://kublr.com/blog/kubernetes-rbac-101-authentication/
3. https://kublr.com/blog/kubernetes-rbac-101-authorization/