SUSE Container Security Platform

SUSE Security (formerly NeuVector) is the only 100% open-source, zero-trust container security platform providing full lifecycle protection from build to runtime. The platform offers end-to-end vulnerability scanning throughout the CI/CD pipeline and into production, with continuous monitoring of containers, hosts, and orchestration platforms. SUSE Security features advanced runtime protection with Layer 7 container firewall, deep packet inspection (DPI), and AI-driven anomaly detection to identify and block network, packet, zero-day, and application attacks like DDoS and DNS threats. The platform audits host and container security using Docker Bench and Kubernetes CIS Benchmark tests, providing risk scores and compliance reports for PCI-DSS, HIPAA, and GDPR. Built-in and custom DLP sensors detect potential policy violations with automated alerts. The platform integrates seamlessly with SUSE Rancher for multi-cluster security management and supports admission controls with Sigstore Cosign for image verification. Security policies can be managed as code using Kubernetes CRDs, enabling GitOps workflows. Available as open-source on GitHub with commercial support from SUSE.