Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
☆2,624Apr 22, 2026Updated last week
Alternatives and similar repositories for kics
Users that are interested in kics are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,212Nov 20, 2025Updated 5 months ago
- Detect, track and alert on infrastructure drift☆2,637Apr 16, 2026Updated last week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,329Updated this week
- A vulnerability scanner for container images and filesystems☆12,081Updated this week
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,687Updated this week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure☆1,455Apr 20, 2026Updated last week
- Security risk analysis for Kubernetes resources☆1,448Apr 20, 2026Updated last week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,822Updated this week
- Cloud Native Runtime Security☆8,904Updated this week
- Code signing and transparency for containers and binaries☆5,858Updated this week
- ☆284Dec 1, 2022Updated 3 years ago
- Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!☆12,272Updated this week
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆964Sep 3, 2024Updated last year
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,162Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adh…☆3,442Apr 22, 2026Updated last week
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.☆2,010Updated this week
- Vulnerability Static Analysis for Containers☆10,971Updated this week
- Open Source Cloud Native Application Protection Platform (CNAPP)☆5,257Mar 8, 2026Updated last month
- Cost monitoring for Kubernetes workloads and cloud costs☆6,504Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,400Updated this week
- A Pluggable Terraform Linter☆5,691Updated this week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,653Updated this week
- A cli tool to help discover deprecated apiVersions in Kubernetes☆2,507Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,911Updated this week
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆3,249Apr 4, 2026Updated 3 weeks ago
- 🐊 Policy Controller for Kubernetes☆4,198Updated this week
- Find secrets with Gitleaks 🔑☆26,317Mar 25, 2026Updated last month
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆5,609Apr 16, 2026Updated last week
- Unified Policy as Code☆7,676Updated this week
- A Blazing fast Security Auditing tool for Kubernetes☆1,005Apr 6, 2024Updated 2 years ago
- Validation of best practices in your Kubernetes clusters☆3,360Updated this week
- A tool to scan Kubernetes cluster for risky permissions☆1,421May 25, 2025Updated 11 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code☆14,525Mar 16, 2026Updated last month
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,203Apr 21, 2026Updated last week
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,972Updated this week
- Terratag is a CLI tool that enables users of Terraform to automatically create and maintain tags across their entire set of AWS, Azure, a…☆1,048Updated this week
- 👀 A Kubernetes cluster resource sanitizer☆6,272Dec 8, 2025Updated 4 months ago
- a lightweight, security focused, BDD test framework against terraform.☆1,450Dec 8, 2025Updated 4 months ago
- Multi-Cloud Security Auditing Tool☆7,641Sep 23, 2025Updated 7 months ago