Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
☆5,940Mar 6, 2026Updated this week
Alternatives and similar repositories for cloud-custodian
Users that are interested in cloud-custodian are comparing it to the libraries listed below
Sorting:
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,160Updated this week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,266Jul 15, 2024Updated last year
- Cloud Security Posture Management (CSPM)☆3,711Feb 23, 2026Updated 2 weeks ago
- Tfsec is now part of Trivy☆6,961Nov 10, 2025Updated 3 months ago
- Multi-Cloud Security Auditing Tool☆7,562Sep 23, 2025Updated 5 months ago
- IAM Least Privilege Policy Generator☆2,136Mar 1, 2026Updated last week
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆9,369Updated this week
- A vault for securely storing and accessing AWS credentials in development environments☆8,961Dec 30, 2025Updated 2 months ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,411Oct 16, 2025Updated 4 months ago
- Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.☆4,372Feb 11, 2021Updated 5 years ago
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,200Nov 20, 2025Updated 3 months ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,185Mar 1, 2026Updated last week
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆907Dec 17, 2021Updated 4 years ago
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,737Mar 1, 2026Updated last week
- Terraform Pull Request Automation☆8,891Updated this week
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,879Updated this week
- Vulnerability Static Analysis for Containers☆10,942Updated this week
- [Node, Python, Java] Repository of sample Custom Rules for AWS Config.☆1,728Mar 1, 2026Updated last week
- Open-source cloud-environment inspector. Supporting AWS, GCP, Azure, and more! Your cloud resources will have nowhere to hide!☆4,111Updated this week
- Cloud cost estimates for Terraform in pull requests💰📉 Shift FinOps Left!☆12,193Mar 1, 2026Updated last week
- Export existing AWS resources to Terraform style (tf, tfstate) / No longer actively maintained☆4,266Dec 11, 2021Updated 4 years ago
- Cloud Native Runtime Security☆8,705Mar 2, 2026Updated last week
- A web dashboard to inspect Terraform States☆2,002Updated this week
- Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function☆2,759Aug 16, 2024Updated last year
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,725Mar 1, 2026Updated last week
- AWS Least Privilege for Distributed, High-Velocity Deployment☆1,148Nov 24, 2025Updated 3 months ago
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,967Mar 2, 2026Updated last week
- AWS IAM linting library☆1,110Jan 7, 2026Updated 2 months ago
- Detect, track and alert on infrastructure drift☆2,621Jan 30, 2026Updated last month
- Security auditing tool for AWS environments☆1,724Nov 28, 2018Updated 7 years ago
- PacBot (Policy as Code Bot)☆1,307Dec 8, 2022Updated 3 years ago
- StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environme…☆2,887Oct 23, 2023Updated 2 years ago
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,130Updated this week
- Data pipelines for cloud config and security data. Build cloud asset inventory, CSPM, FinOps, and vulnerability management solutions. Ext…☆6,335Mar 2, 2026Updated last week
- CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code☆14,495Dec 5, 2025Updated 3 months ago
- Generate documentation from Terraform modules in various output formats☆4,706Dec 18, 2025Updated 2 months ago
- The Cloud Native Control Plane☆11,471Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆32,947Updated this week
- A Pluggable Terraform Linter☆5,635Updated this week