prowler-cloud / prowlerLinks
Prowler is the Open Cloud Security for AWS, Azure, GCP, Kubernetes, M365 and more. As agent-less, it helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
☆12,221Updated this week
Alternatives and similar repositories for prowler
Users that are interested in prowler are comparing it to the libraries listed below
Sorting:
- Cloud Security Posture Management (CSPM)☆3,625Updated 3 weeks ago
- Multi-Cloud Security Auditing Tool☆7,398Updated last month
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,317Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,947Updated 3 months ago
- Tfsec is now part of Trivy☆6,909Updated 2 weeks ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,145Updated 2 weeks ago
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,222Updated last year
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,829Updated last week
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,357Updated last month
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,178Updated 2 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,523Updated last year
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆2,227Updated 2 weeks ago
- Automating situational awareness for cloud penetration tests.☆2,225Updated last week
- IAM Least Privilege Policy Generator☆2,115Updated last week
- This is a step-by-step guide to implementing a DevSecOps program for any size organization☆2,011Updated 10 months ago
- Ultimate DevSecOps library☆6,445Updated 3 months ago
- A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it☆3,048Updated this week
- Granular, Actionable Adversary Emulation for the Cloud☆2,173Updated 3 weeks ago
- A vulnerability scanner for container images and filesystems☆10,861Updated this week
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆1,020Updated last week
- A vault for securely storing and accessing AWS credentials in development environments☆8,877Updated last year
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,602Updated this week
- Security auditing tool for AWS environments☆1,730Updated 6 years ago
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,929Updated 5 months ago
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…☆5,251Updated 5 months ago
- CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code☆14,173Updated this week
- Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.☆7,793Updated last week
- Nuke a whole AWS account and delete all its resources.☆5,801Updated last year
- Terraform Pull Request Automation☆8,592Updated this week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,296Updated this week