Open Cloud Security Posture Management Engine
☆345Feb 19, 2022Updated 4 years ago
Alternatives and similar repositories for opencspm
Users that are interested in opencspm are comparing it to the libraries listed below
Sorting:
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆199Aug 29, 2024Updated last year
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.☆554Jul 13, 2025Updated 8 months ago
- OpenCSPM Community Controls☆14May 18, 2021Updated 4 years ago
- Cloud Security Posture Management (CSPM)☆3,717Feb 23, 2026Updated 3 weeks ago
- Resource types that can be publicly exposed on AWS☆331Feb 23, 2022Updated 4 years ago
- Darkbit Cloud Security Tools☆25Nov 12, 2020Updated 5 years ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆1,035Feb 9, 2026Updated last month
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,195Mar 4, 2026Updated 2 weeks ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆608Nov 28, 2024Updated last year
- A tool for quickly evaluating IAM permissions in AWS.☆1,544Aug 2, 2024Updated last year
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,167Dec 8, 2022Updated 3 years ago
- Exports primitive and predefined GCP IAM Roles and their permissions☆109Mar 14, 2026Updated last week
- This repo has been replaced by https://www.cloudvulndb.org☆727Jun 29, 2022Updated 3 years ago
- MKIT is a Managed Kubernetes Inspection Tool that validates several common security-related configuration settings of managed Kubernetes …☆397Sep 16, 2021Updated 4 years ago
- Tweets when new GCP IAM updates are found☆13Mar 14, 2026Updated last week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,760Mar 14, 2026Updated last week
- GCP CSPM using Google Sheets☆38Apr 4, 2025Updated 11 months ago
- ☆375Feb 23, 2024Updated 2 years ago
- Multi-Cloud Security Auditing Tool☆7,579Sep 23, 2025Updated 5 months ago
- SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS☆910Dec 17, 2024Updated last year
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,947Updated this week
- AWS IAM linting library☆1,111Jan 7, 2026Updated 2 months ago
- ☆139Mar 29, 2023Updated 2 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,097Updated this week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,273Jul 15, 2024Updated last year
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,344Updated this week
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆908Dec 17, 2021Updated 4 years ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,414Oct 16, 2025Updated 5 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆999Oct 4, 2022Updated 3 years ago
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆224Aug 11, 2023Updated 2 years ago
- ☆159Jul 8, 2023Updated 2 years ago
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆448Jul 17, 2023Updated 2 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆144May 1, 2025Updated 10 months ago
- Slack bot which promotes Defense in Depth/Zero Trust security practices☆24Jan 17, 2023Updated 3 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆60Jan 9, 2022Updated 4 years ago
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,510Updated this week
- IAM Least Privilege Policy Generator☆2,138Mar 14, 2026Updated last week
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆139Jul 23, 2021Updated 4 years ago