About Ocular

Ocular is an open-source project built to give security engineers and developers the clarity they need to secure modern systems.

Below, you can find a series of links, documents, and resources associated with Ocular.

Ocular Open Source Resources

You can install ocular using the Helm Chart we distribute, or by cloning our GitHub repository and setting up the development environment.

We welcome contributions to our open-source projects. Learn more about contributing.

Ideas and Feedback

We are constantly learning about emerging use cases and are always interested in hearing about how you use Ocular. If you would like to talk, please get in touch.

Help and Support

If you would like to report an issue or open a discussion, please visit our GitHub repository

Ocular

Ocular is an open-source, “out-of-band” code scanning and security data aggregation system. Designed for flexibility, speed, and research empowerment, it enables security engineers and developers to scan, aggregate, and analyze code and infrastructure without disrupting development workflows. Built on Kubernetes with modular components, Ocular simplifies integration and customization.

Core Capabilities

  • B.Y.O.S. (Bring your own scanner): Any static scanner can be used, so long as there exists a container image for it.
  • Fully customizable: Ocular supports customization through container images, allowing developers to have complete control.
  • Scan any static asset: Ocular has the ability to scan anything that can be represented on a file-system. That includes git repositories, docker images, file archives, etc.
  • Built-in integrations: Many common use cases, like cloning git repos or uploading results to S3 buckets are bundled on install.

Ready to get started?

Release Information

Downloads

We provide docker images under GitHub releases and publish a Helm Chart for installing Ocular.

Help and Support

If you need additional help, get in touch at crashappsec/ocular.