15 years helping Singaporean businesses
choose better software

Container Security Tools

Container Security software helps organizations implement policies and security tools to protect containerized applications, infrastructure, image registries, software supply chain, and system tools against vulnerabilities.

Keep your containers secure with Datadog's Cloud Security Platform. Identify threats in your containerized environment in real-time. Learn more about Datadog
Secure your containerized environment with Datadog's Cloud Security platform. With real-time threat detection and continuous configuration audits across applications, hosts, containers, and cloud infrastructure, Datadog makes it easy to bring speed and scale to your production security operations. Use turn-key detection rules that automatically monitor audit logs to identify critical security and compliance issues in your containerized environment. Resolve issues faster with real-time dashboards Learn more about Datadog

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Stream Security provides real time cloud threat detection, real-time security posture management, and compliance monitoring. Learn more about Stream Security
Stream Security is cloud security software that continuously detects threats and assesses risks across cloud environments. The platform provides real-time analysis of configuration changes to identify critical exposures before attackers exploit them. It uses machine learning driven by the MITRE ATT&CK framework to detect network, identity, and Kubernetes threats without agents. Organizations can leverage the software to secure cloud infrastructure, govern resources, and accelerate incident response. Learn more about Stream Security

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Get an instant overview of all your code & container vulnerability issues. Learn more about Aikido Security
Aikido Security is a developer-first software security app. Scan your source code, containers & cloud and see which vulnerabilities are actually important to solve. We speed up triaging by massively reducing false-positives and making CVEs human-readable. Aikido makes it simple to keep your product secure and gives you back time to do what you do best: writing code. We combine scanning capabilities like Container Scanning, SAST, IaC, DAST, SCA, CSPM & Secrets Detection, all in one tool. Learn more about Aikido Security

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Application development solution that enables businesses to build applications, share container images, and more.
Docker is an application development platform that provides developers with tools, services, and trusted content to accelerate the delivery of secure applications. The Docker platform allows developers to build, share, and run applications anywhere without tedious environment configuration or management. Learn more about Docker

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Cloud-based PaaS for businesses that helps develop, manage & deploy web and mobile-based applications to enhance customer engagement.
Heroku is a container-based cloud Platform as a Service (PaaS). Developers use Heroku to deploy, manage, and scale modern apps. The platform is elegant, flexible, and easy to use, offering the simplest path to getting apps to market quickly. Heroku is fully managed, giving developers the freedom to focus on core product without the burden of maintaining app infrastructure. Integrated tools, services, and workflows are all meticulously designed to help maximize individual and team productivity. Learn more about Heroku

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Cybersecurity with AI-powered prevention, detection, response and hunting in a single autonomous XDR platform.
At SentinelOne, we are redefining cybersecurity by pushing the boundaries of autonomous technology. Our Singularity ️XDR Platform encompasses AI-powered prevention, detection, response, and threat hunting across user endpoints, containers, cloud workloads, and IoT devices. Empowering modern enterprises to defend faster, at greater scale, and with higher accuracy across their entire attack surface. Learn more about SentinelOne

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Orca Security is the pioneer of agentless cloud security that spans AWS, Azure, Google Cloud and Kubernetes.
Orca Security is the pioneer of agentless cloud security that is trusted by hundreds of enterprises globally. Orca makes cloud security possible for enterprises moving to and scaling in the cloud with its patented SideScanning™ technology and Unified Data Model. The Orca Cloud Security Platform delivers the world's most comprehensive coverage and visibility of risks across AWS, Azure, Google Cloud and Kubernetes. Learn more about Orca Security

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Dynatrace provides software intelligence to simplify cloud complexity and accelerate digital transformation.
Dynatrace is an application performance and lifecycle management solution designed to help retail businesses, financial markets, transportation companies, emergency services, and government bodies monitor and analyze the performance of applications on a unified dashboard. Key features of the platform include anomaly detection, root cause determination, network process monitoring, log entry analysis, cross-team collaboration, AI-assistance, and more among others. Learn more about Dynatrace

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
CrowdStrike is a cybersecurity leader with a cloud-native platform for protecting endpoints, cloud workloads, identities, and data.
CrowdStrike is redefining modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity, and data. Learn more about Falcon

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Monitors the vulnerability management process, tracks remediation and ensures policy compliance.
Security Risk and Compliance Management - On Time, On Budget, On Demand -- Qualys is the first company to deliver an on demand solution for security risk and compliance management. Qualys monitors your company's vulnerability management process, tracks remediation and ensures policy compliance. QualysGuard is also the widest deployed security on demand platform in the world, performing over 150 million IP audits per year - with no software to install and maintain. Learn more about Qualys Cloud Platform

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Red Hat OpenShift enables organizations to build, modernize, and deploy applications at scale using Kubernetes container technology.
Red Hat OpenShift is an enterprise Kubernetes container platform that provides a unified experience for building, modernizing, and deploying applications across any environment, whether on-premises, in the public cloud, hybrid cloud, or at the edge. The platform streamlines application workflows with built-in CI/CD pipelines, source-to-image technology to containerize apps, and advanced management for scalability and high availability. Learn more about OpenShift

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Artifactory- the world's only universal artifact repository manager supporting all major packaging formats, CI servers and build tools.
The core of the JFrog DevOps Platform, Artifactory provides a single source of truth for binaries, dependencies and build artifacts for release management. It’s a universal binary repository manager, supporting 30+ build packages, artifacts, and their corresponding metadata. DevOps teams can standardize on build bill-of-materials across the Dev, Test, Stage, and Prod steps for both continuous integration (CI) and continuous delivery (CD). Artifactory integrates with your preferred DevOps tools. Learn more about Artifactory

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
IBM Cloud Kubernetes Service is a certified, managed Kubernetes solution used to deploy and manage containerized apps on IBM Cloud.
IBM Cloud Kubernetes Service is a certified, managed Kubernetes solution used to deploy and manage containerized apps on IBM Cloud, by creating a cluster of compute hosts. Its features include intelligent scheduling based on available resources, self-healing per defined policies, built-in logging and metrics for cluster performance, plus more. IBM Cloud Kubernetes Service securely manages the resources needed to deploy, update, and scale applications. Learn more about IBM Cloud Kubernetes Service

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Snyk's Developer Security Platform puts security expertise in the toolbox of every developer.
Snyk is the leader in developer security. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce. Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST. Learn more about Snyk

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Oracle Linux is an operating system that provides an environment for virtualization, data management, and cloud-native computer tools.
Oracle Linux is an operating system that provides an environment for virtualization, data management, and cloud-native computer tools. In addition, the system is binary compatible with Red Hat Enterprise Linux and can be downloaded for free. Learn more about Oracle Linux

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
VMware Tanzu simplifies multi-cloud operations and frees developers to move faster in creating and delivering modernized applications.
VMware Tanzu enables organizations to get modern apps securely to production fast and adapt quickly to changing business, customer, and security requirements. With VMware Tanzu developers can build apps using pre-approved, secure paths to production to free them to spend more time coding versus managing toolsets. Also, VMware Tanzu eases container provisioning, monitoring, and observability which simplifies multi-cloud operations across any cloud, VM and any Kubernetes distribution. Learn more about VMware Tanzu

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
BuildPiper: The Most Powerful Microservice Delivery Platform
BuildPiper is an end-to-end Kubernetes & Microservices Application Delivery Platform that enables dockerized code to be deployed across environments and enables seamless management of Production operations with all the required observability, security, and compliance baked in. The goal is to simplify and accelerate the 'microservices’ application journey for any organization & make it hugely rewarding. Learn more about BuildPiper

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Unify SIEM, endpoint security, and cloud security Elastic Security modernizes security operations — enabling analytics across years of
Unify SIEM, endpoint security, and cloud security Elastic Security modernizes security operations — enabling analytics across years of data, automating key processes, and bringing native endpoint security to every host. Elastic Security equips teams to prevent, detect, and respond to threats at cloud speed and scale — securing business operations with a unified, open platform. Learn more about Elastic Security

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Fully managed container orchestration service that helps users easily deploy, manage, and scale containerized applications.
Fully managed container orchestration service that helps users easily deploy, manage, and scale containerized applications. Learn more about Amazon ECS

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Develop and deploy highly scalable containerized applications using your favorite language on a fully managed serverless platform.
Cloud Run is a fully-managed compute platform that lets you run your code in a container directly on top of Google's scalable infrastructure. We’ve intentionally designed Cloud Run to make developers more productive - you get to focus on writing your code, using your favorite language, and Cloud Run takes care of operating your service. Learn more about Google Cloud Run

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Sysdig secures cloud innovation with the power of runtime insights.
In the cloud, every second counts. Attacks move at warp speed, and security teams must protect the business without slowing it down. Sysdig stops cloud attacks in real time, instantly detecting changes in risk with runtime insights and open source Falco. We correlate signals across cloud workloads, identities, and services to uncover hidden attack paths and prioritize real risk. From prevention to defense, Sysdig helps enterprises focus on what matters: innovation. Sysdig. Secure Every Second. Learn more about Sysdig

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Flexible cloud infrastructure platform delivered through managed services. Provides highly configurable private clouds with no lock-in.
Mirantis Cloud Platform (MCP) enables service providers and enterprises to accelerate digital transformation at scale with highly configurable private clouds that are powered by infrastructure-as-code and based on open standards. Offered through Mirantis cloud management services, MCP applies DevOps best practices to open cloud to provide the assurance and convenience of turnkey infrastructure, optimized for your business by the industrys leading experts in software-defined open cloud solution Learn more about Mirantis

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Find & fix security and compliance issues in open source libraries in real-time
The leading solution for agile open source security and license compliance management, WhiteSource integrates with the DevOps pipeline to detect vulnerable open source libraries in real-time. It provides remediation paths and policy automation to speed up time-to-fix. It also prioritizes vulnerability alerts based on usage analysis. We support over 200 programming languages and offer the widest vulnerability database aggregating information from dozens of peer-reviewed, respected sources. Learn more about WhiteSource

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Rancher lets users deploy and manage Kubernetes clusters across data centers, clouds, and edge environments.
Rancher is an enterprise Kubernetes management platform software that provides a complete software stack for teams adopting containers. Rancher addresses the operational and security challenges of managing multiple Kubernetes clusters, while providing DevOps teams with integrated tools for running containerized workloads. Learn more about Rancher

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning
Protect your code from exposed secrets and high-risk security misconfigurations, with zero permissions and no data transfer.
Spectral is a lightning-fast, developer-first cybersecurity solution that acts as a control-plane over source code and other developer assets. It finds and protects against harmful security errors in code, configurations and other artifacts. Spectral employs the first hybrid scanning engine, combining AI and hundreds of detectors, ensuring developers can code with confidence while protecting companies from high-cost mistakes. Learn more about SpectralOps

Features

  • Policy Management
  • Continuous Integration
  • Container Isolation
  • For DevSecOps
  • Runtime Container Security
  • Container Scanning