prowler-cloud / prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
☆11,403Updated this week
Alternatives and similar repositories for prowler:
Users that are interested in prowler are comparing it to the libraries listed below
- Multi-Cloud Security Auditing Tool☆7,027Updated 4 months ago
- Cloud Security Posture Management (CSPM)☆3,467Updated last week
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,120Updated 4 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,602Updated last week
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,058Updated 3 weeks ago
- Tfsec is now part of Trivy☆6,798Updated last month
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,129Updated this week
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,609Updated this week
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,101Updated 8 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,465Updated 7 months ago
- Automating situational awareness for cloud penetration tests.☆2,059Updated 2 weeks ago
- IAM Least Privilege Policy Generator☆2,061Updated 3 weeks ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆25,104Updated this week
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,150Updated 2 years ago
- Granular, Actionable Adversary Emulation for the Cloud☆1,962Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆4,872Updated 3 months ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆985Updated last month
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,263Updated this week
- Vulnerability Static Analysis for Containers☆10,550Updated last week
- Hunt for security weaknesses in Kubernetes clusters☆4,832Updated last year
- Open-source cloud-environment inspector. Supporting AWS, GCP, Azure, and more! Your cloud resources will have nowhere to hide!☆4,029Updated this week
- Security auditing tool for AWS environments☆1,728Updated 6 years ago
- Cloud Native Runtime Security☆7,712Updated last week
- a lightweight, security focused, BDD test framework against terraform.☆1,378Updated 3 weeks ago
- [Node, Python, Java] Repository of sample Custom Rules for AWS Config.☆1,677Updated last week
- Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS F…☆1,163Updated 8 months ago
- Detect, track and alert on infrastructure drift☆2,520Updated 2 weeks ago
- AWS IAM linting library☆1,069Updated last week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,249Updated this week
- A Pluggable Terraform Linter☆5,179Updated last week