prowler-cloud / prowlerLinks
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
☆11,973Updated this week
Alternatives and similar repositories for prowler
Users that are interested in prowler are comparing it to the libraries listed below
Sorting:
- Multi-Cloud Security Auditing Tool☆7,285Updated last month
- Cloud Security Posture Management (CSPM)☆3,574Updated this week
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,272Updated 9 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,842Updated 3 weeks ago
- Tfsec is now part of Trivy☆6,862Updated last week
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,110Updated this week
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,303Updated last week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,195Updated last year
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,108Updated 2 weeks ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,768Updated last week
- Automating situational awareness for cloud penetration tests.☆2,170Updated last week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,516Updated this week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,440Updated last week
- IAM Least Privilege Policy Generator☆2,106Updated this week
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆2,169Updated last month
- A tool for quickly evaluating IAM permissions in AWS.☆1,516Updated last year
- Ultimate DevSecOps library☆6,345Updated 3 weeks ago
- Granular, Actionable Adversary Emulation for the Cloud☆2,110Updated 2 weeks ago
- A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it☆3,017Updated last week
- The open source ELT framework powered by Apache Arrow☆6,172Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,638Updated last week
- Nuke a whole AWS account and delete all its resources.☆5,788Updated 10 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆27,911Updated this week
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,896Updated 2 months ago
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,739Updated this week
- A Central Control Plane for AWS Permissions and Access☆3,194Updated last year
- This is a step-by-step guide to implementing a DevSecOps program for any size organization☆1,998Updated 7 months ago
- Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.☆8,866Updated last week
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆5,139Updated 2 months ago
- Hunt for security weaknesses in Kubernetes clusters☆4,926Updated last year