SUSE NeuVector

SUSE NeuVector is an open source, Zero Trust container security platform, acquired by SUSE in late 2021. It enables users to continuously scan throughout the container lifecycle, remove security roadblocks, and bake in security policies at the start to maximize developer agility.

It features:

• Scanning and admission control during build, test and deployment.
• Scans containers, hosts, and orchestration platforms during run-time.
• Audits host and container security with Docker Bench and Kubernetes CIS Benchmark for security tests.
• Risk Scores and Compliance Reports.

• Protect containers against attacks from internal and external networks.
• The only real-time identification and blocking of network, packet, zero day, and application attacks like DDoS and DNS.
• Identify and block at Layer 7 between container and pod pairs.

Automated Prevention and Policy

• DevOps teams deploy new apps with integrated security policies to ensure they are secured throughout the CI/CD pipeline and into production.
• Discover application behavior and services to isolate them from attacks.
• Streamline communication between security and development.

• Runs all major cloud platforms including AWS, Azure and Google Cloud Platform.
• Integrates with all leading CMPs including SUSE Rancher, and RedHat OpenShift.
• Supports SYSLOG and webhooks for notifications into alerting systems.
• LDAP integration and single sign-on with SAML support.