prowler-cloud / prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
☆11,076Updated this week
Alternatives and similar repositories for prowler:
Users that are interested in prowler are comparing it to the libraries listed below
- Cloud Security Posture Management (CSPM)☆3,398Updated this week
- Multi-Cloud Security Auditing Tool☆6,862Updated last month
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,044Updated 2 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,475Updated 2 months ago
- Tfsec is now part of Trivy☆6,746Updated this week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,044Updated 6 months ago
- Automating situational awareness for cloud penetration tests.☆1,998Updated 2 weeks ago
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,518Updated this week
- A tool for quickly evaluating IAM permissions in AWS.☆1,445Updated 5 months ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,025Updated last week
- Ultimate DevSecOps library☆5,854Updated last month
- Cloud Native Runtime Security☆7,524Updated this week
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆1,791Updated 2 weeks ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆24,373Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆4,802Updated last month
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,144Updated 2 years ago
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,186Updated this week
- IAM Least Privilege Policy Generator☆2,036Updated last week
- Granular, Actionable Adversary Emulation for the Cloud☆1,884Updated this week
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆968Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,781Updated 9 months ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,140Updated this week
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆11,446Updated this week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆10,371Updated this week
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,040Updated this week
- Security auditing tool for AWS environments☆1,730Updated 6 years ago
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,113Updated this week
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,779Updated 2 months ago