cartography-cncf / cartographyView external linksLinks
Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
☆3,721Updated this week
Alternatives and similar repositories for cartography
Users that are interested in cartography are comparing it to the libraries listed below
Sorting:
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,254Jul 15, 2024Updated last year
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,180Feb 8, 2026Updated last week
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,401Oct 16, 2025Updated 4 months ago
- IAM Least Privilege Policy Generator☆2,138Feb 8, 2026Updated last week
- A tool for quickly evaluating IAM permissions in AWS.☆1,539Aug 2, 2024Updated last year
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆12,983Updated this week
- Visualize your aws security groups.☆721Apr 7, 2025Updated 10 months ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,924Feb 6, 2026Updated last week
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆447Jul 17, 2023Updated 2 years ago
- AWS IAM linting library☆1,109Jan 7, 2026Updated last month
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆907Dec 17, 2021Updated 4 years ago
- Multi-Cloud Security Auditing Tool☆7,537Sep 23, 2025Updated 4 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆994Oct 4, 2022Updated 3 years ago
- Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.☆447Jun 21, 2024Updated last year
- Cloud Security Posture Management (CSPM)☆3,696Updated this week
- Tfsec is now part of Trivy☆6,952Nov 10, 2025Updated 3 months ago
- Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.☆4,373Feb 11, 2021Updated 5 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,065Updated this week
- AWS Least Privilege for Distributed, High-Velocity Deployment☆1,148Nov 24, 2025Updated 2 months ago
- A command-line tool to get valuable information out of AWS CloudTrail☆830Updated this week
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,475Updated this week
- Granular, Actionable Adversary Emulation for the Cloud☆2,252Feb 6, 2026Updated last week
- StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environme…☆2,887Oct 23, 2023Updated 2 years ago
- Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy☆3,336Nov 13, 2025Updated 3 months ago
- PacBot (Policy as Code Bot)☆1,306Dec 8, 2022Updated 3 years ago
- Data pipelines for cloud config and security data. Build cloud asset inventory, CSPM, FinOps, and vulnerability management solutions. Ext…☆6,321Feb 9, 2026Updated last week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,206Nov 20, 2025Updated 2 months ago
- A vault for securely storing and accessing AWS credentials in development environments☆8,954Dec 30, 2025Updated last month
- A Central Control Plane for AWS Permissions and Access☆3,202Updated this week
- Vulnerability Static Analysis for Containers☆10,928Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆31,904Updated this week
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,165Dec 8, 2022Updated 3 years ago
- Cloud Native Runtime Security☆8,653Updated this week
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆1,034Feb 9, 2026Updated last week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,687Updated this week
- SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS☆905Dec 17, 2024Updated last year
- Open-source cloud-environment inspector. Supporting AWS, GCP, Azure, and more! Your cloud resources will have nowhere to hide!☆4,107Feb 7, 2026Updated last week
- Hunt for security weaknesses in Kubernetes clusters☆5,000Mar 19, 2024Updated last year
- Discover resources created in an AWS account.☆735Apr 5, 2024Updated last year