Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
Alternatives To Cartography
Project NameStarsDownloadsRepos Using ThisPackages Using ThisMost Recent CommitTotal ReleasesLatest ReleaseOpen IssuesLicenseLanguage
Neo4j12,00296618610 days ago423November 24, 2023293gpl-3.0Java
Graphs for Everyone
3 days ago150December 01, 2023104apache-2.0Python
Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
Pygraphistry1,939423 days ago163November 02, 2023151bsd-3-clausePython
PyGraphistry is a Python library to quickly load, shape, embed, and explore big graphs with the GPU-accelerated Graphistry visual graph analyzer
Neovis.js1,403342 months ago30May 23, 202348apache-2.0TypeScript
Neo4j + vis.js = neovis.js. Graph visualizations in the browser with data from Neo4j.
7 years ago1December 20, 201643apache-2.0Go
Simulate Protocol Interactions in Go
Node Neo4j934459555 years ago34June 11, 201546apache-2.0CoffeeScript
[RETIRED] Neo4j graph database driver (REST API client) for Node.js
a year ago26bsd-2-clauseJavaScript
InteractiveGraph provides a web-based interactive visualization and analysis framework for large graph data, which may come from a GSON file, or an online Neo4j graph database. InteractiveGraph also provides applications built on the framework: GraphNavigator, GraphExplorer and RelFinder.
Stock Knowledge Graph896
3 years ago15mitPython
Neomodel850621514 days ago51November 02, 202363mitPython
An Object Graph Mapper (OGM) for the Neo4j graph database.
10 hours ago41December 03, 2023242mitC++
Embeddable property graph database management system built for query speed and scalability. Implements Cypher.
Alternatives To Cartography
Select To Compare

Alternative Project Comparisons


Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.

Visualization of RDS nodes and AWS nodes

Why Cartography?

Cartography aims to enable a broad set of exploration and automation scenarios. It is particularly good at exposing otherwise hidden dependency relationships between your service's assets so that you may validate assumptions about security risks.

Service owners can generate asset reports, Red Teamers can discover attack paths, and Blue Teamers can identify areas for security improvement. All can benefit from using the graph for manual exploration through a web frontend interface, or in an automated fashion by calling the APIs.

Cartography is not the only security graph tool out there, but it differentiates itself by being fully-featured yet generic and extensible enough to help make anyone better understand their risk exposure, regardless of what platforms they use. Rather than being focused on one core scenario or attack vector like the other linked tools, Cartography focuses on flexibility and exploration.

You can learn more about the story behind Cartography in our presentation at BSidesSF 2019.

Install and configure

Start here.

Supported platforms

  • Amazon Web Services - API Gateway, Config, EC2, ECS, ECR, Elasticsearch, Elastic Kubernetes Service (EKS), DynamoDB, IAM, Inspector, KMS, Lambda, RDS, Redshift, Route53, S3, Secrets Manager, Security Hub, SQS, SSM, STS, Tags
  • Google Cloud Platform - Cloud Resource Manager, Compute, DNS, Storage, Google Kubernetes Engine
  • Google GSuite - users, groups
  • Duo CRXcavator - Chrome extensions, GSuite users
  • Oracle Cloud Infrastructure - IAM
  • Okta - users, groups, organizations, roles, applications, factors, trusted origins, reply URIs
  • Github - repos, branches, users, teams
  • DigitalOcean
  • Microsoft Azure - CosmosDB, SQL, Storage, Virtual Machine
  • Kubernetes - Cluster, Namespace, Service, Pod, Container
  • PagerDuty - Users, teams, services, schedules, escalation policies, integrations, vendors
  • Crowdstrike Falcon - Hosts, Spotlight vulnerabilites, CVEs
  • NIST CVE - Common Vulnerabilities and Exposures (CVE) data from NIST database
  • Lastpass - users
  • BigFix - Computers
  • Duo - Users, Groups, Endpoints


Start with our tutorial. Our data schema is a helpful reference when you get stuck.



Thank you for considering contributing to Cartography!

Code of conduct

Legal stuff: This project is governed by Lyft's code of conduct. All contributors and participants agree to abide by its terms.

Bug reports and feature requests and discussions

Submit a GitHub issue to report a bug or request a new feature. If we decide that the issue needs more discussion - usually because the scope is too large or we need to make careful decision - we will convert the issue to a GitHub Discussion.

Developing Cartography

Get started with our developer documentation. Please feel free to submit your own PRs to update documentation if you've found a better way to explain something.

Sign the Contributor License Agreement (CLA)

We require a CLA for code contributions, so before we can accept a pull request we need to have a signed CLA. Please visit our CLA service and follow the instructions to sign the CLA.

Who uses Cartography?

  1. Lyft
  2. Thought Machine
  3. MessageBird
  4. Cloudanix
  5. ZeusCloud
  6. {Your company here} :-)

If your organization uses Cartography, please file a PR and update this list. Say hi on Slack too!

Popular Neo4j Projects
Popular Graph Projects
Popular Data Storage Categories
Related Searches

Get A Weekly Email With Trending Projects For These Categories
No Spam. Unsubscribe easily at any time.