Alternatives and similar repositories for terrafirma:

Users that are interested in terrafirma are comparing it to the libraries listed below

• chef-boneyard / terraform-provisioner-inspec
  Terraform InSpec Provisioner Plugin
  ☆68Updated 6 years ago
• stefansundin / ec2-metadata-filter
  Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)
  ☆31Updated 5 years ago
• mattray / inspec-iggy
  InSpec CLI plugin for generating compliance controls from Terraform and CloudFormation
  ☆105Updated 3 years ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆78Updated 2 months ago
• z0ph / aa-policy-validator
  Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
  ☆43Updated 3 years ago
• rdkls / tf-parliament
  ☆80Updated 3 years ago
• mhausenblas / rbIAM
  A unified IAM+Kubernetes RBAC access control exploration tool
  ☆77Updated 5 years ago
• manheim / manheim-c7n-tools
  Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.
  ☆45Updated 2 weeks ago
• policy-hub / policy-hub-cli
  CLI for searching Rego policies
  ☆105Updated 3 years ago
• Netflix-Skunkworks / swag-client
  Cloud multi-account metadata management tool.
  ☆88Updated 4 years ago
• bsnape / rspec-terraform
  RSpec tests for your Terraform modules
  ☆92Updated 9 years ago
• adhorn / ssh-restricted
  SSH-Restricted deploys an SSH compliance rule (AWS Config) with auto-remediation via AWS Lambda if SSH access is public.
  ☆30Updated 3 years ago
• cloudposse / terraform-aws-service-control-policies
  Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts
  ☆50Updated last week
• jeanlouisferey / aws-securitygroup-grapher
  This ansible role gets information from an AWS VPC and generate a graphical representation of security groups
  ☆103Updated 4 years ago
• mozilla / guardduty-multi-account-manager
  Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…
  ☆66Updated last year
• kmcquade / terraform-aws-policy-sentry
  Terraform module for Policy Sentry.
  ☆25Updated 4 years ago
• mitre / cis-aws-foundations-hardening
  (WIP) A terraform / kitchen-terraform hardening baseline for the cis-aws-foundations-baseline
  ☆24Updated 3 years ago
• alphagov / aws-security-alarms
  CloudTrail and CloudWatch configuration with some basic security alarms.
  ☆18Updated 7 years ago
• cloudposse-archives / atlantis-experiments
  GitOps for Teams (experimental hard fork of atlantis)
  ☆14Updated 5 years ago
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• cyberark / summon-aws-secrets
  Summon provider for AWS Secrets Manager
  ☆52Updated last year
• hashicorp / tfe-policies-example
  An example of using Sentinel policies in VCS in Terraform Enterprise
  ☆26Updated last week
• BenchLabs / talk-vault-ephemeral-credentials
  "Ephemeral credentials with Vault and Terraform" demo for the Hashicorp User Group talk
  ☆19Updated 4 years ago
• leg100 / etok
  Execute Terraform on Kubernetes
  ☆73Updated last year
• Netflix-Skunkworks / skunky
  Marking instances dirty since 2018
  ☆47Updated 5 years ago
• Blokje5 / validating-terraform-with-conftest
  Example Code along with the blog post at https://blokje5/dev
  ☆23Updated 5 years ago
• jasonumiker / clair-ecs-fargate
  Example of how to run the Clair image scanner on AWS ECS Fargate
  ☆27Updated 6 years ago
• GoogleCloudPlatform / inspec-gke-cis-benchmark
  GKE CIS 1.1.0 Benchmark InSpec Profile
  ☆27Updated 3 years ago
• kshitijcode / a2a
  ☆53Updated 4 years ago
• jaksi / awslog
  Show the history and changes between configuration versions of AWS resources
  ☆70Updated 5 years ago