Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Prowler | 9,547 | a day ago | 55 | November 16, 2023 | 32 | apache-2.0 | Python | |||
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more | ||||||||||
Tfsec | 6,548 | 18 | a month ago | 411 | September 11, 2023 | 15 | mit | Go | ||
Security scanner for your Terraform code | ||||||||||
Checkov | 6,284 | 6 | 3 months ago | 3,177 | December 07, 2023 | 131 | apache-2.0 | Python | ||
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew. | ||||||||||
Cloud Custodian | 5,207 | 22 | 19 | 2 days ago | 135 | November 29, 2023 | 1,299 | apache-2.0 | Python | |
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources | ||||||||||
Awesome Cloud Security | 1,549 | a year ago | 4 | |||||||
🛡️ Awesome Cloud Security Resources ⚔️ | ||||||||||
Cloudformation Guard | 1,196 | 2 | 3 months ago | 15 | November 17, 2023 | 35 | apache-2.0 | Rust | ||
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0 | ||||||||||
Cfn_nag | 1,105 | 8 | 3 | a year ago | 344 | May 17, 2022 | 67 | mit | Ruby | |
Linting tool for CloudFormation templates | ||||||||||
Pacbot | 1,104 | 2 years ago | 127 | apache-2.0 | Java | |||||
PacBot (Policy as Code Bot) | ||||||||||
Electriceye | 794 | 8 months ago | 12 | apache-2.0 | Python | |||||
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks | ||||||||||
Cfripper | 384 | 3 months ago | 89 | December 04, 2023 | 5 | apache-2.0 | Python | |||
Library and CLI tool for analysing CloudFormation templates and check them for security compliance. |