Repository navigation

#

cspm

prowler-cloud/prowler
prowler-cloud / prowler 

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.

安全security-hardeninghardeningAmazon Web Servicescis-benchmarkcompliancegdprforensicscloudwell-architecteddevsecopsAzureiamPythonGoogle 云multi-cloudSoftware as a servicecspm
Python
11511
17 小时前
turbot/steampipe
turbot / steampipe 

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

steampipePostgreSQLpostgresql-fdwcloud安全Amazon Web ServicesAzureciscnappcspmDevOpsdevsecopsGoogle 云GoKubernetesTerraformetlSQLiteHacktoberfest
Go
7282
5 天前
cloudquery / cloudquery 

The developer first cloud governance platform

Amazon Web ServicesGoogle 云AzureSQLdata-integrationeltetletl-frameworkBigQuerydata-collectiondata-engineeringKubernetesdataairbyteGitHub API数据分析GoogleGocspmattack-surface-management
Go
6078
12 小时前
deepfence/ThreatMapper
deepfence / ThreatMapper 

Open Source Cloud Native Application Protection Platform (CNAPP)

cloud-nativevulnerability-managementthreat-analysisdevsecopssecopsregistry-scanning安全cwppobservabilitycloudsecurityvulnerability-scannersvulnerability-detectionscanning-toolcnappcompliancecontainerscspmDevOpsKubernetesHacktoberfest
TypeScript
4972
3 天前
aquasecurity / cloudsploit 

Cloud Security Posture Management (CSPM)

Amazon Web Services安全cloudAzurecspmaquaGoogle 云ociOracle 数据库alibaba
JavaScript
3495
1 个月前
someengineering/fixinventory
someengineering / fixinventory 

Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

Amazon Web ServicesGoogle 云Infrastructure as codedigitalocean安全security-automationcnappcspmCybersecuritypolicy-as-code
Python
1951
22 天前
HummerRisk / HummerRisk 

HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。

cloud-custodiancloud-nativeprowler安全sbomcloud-native-securitycspmkubernetes-securitytrivycompliancevulnerability
Java
1488
4 个月前
cloudgraphdev / cli 

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Amazon Web ServicesGoogle 云AzureGraphQLDevOpsdeveloper-toolsdevops-toolsKubernetes安全cspmnistisocispcicloudtencent
TypeScript
890
1 年前
stackql / stackql 

Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework

asset-managementcloudcloud-securitycspmDevOpsdevsecopsInfrastructure as codeopenapi3SQLHacktoberfest
Go
772
8 天前
Zeus-Labs / ZeusCloud 

Open Source Cloud Security

Amazon Web ServicesblueteamBug Bountyciscloudcloudsecuritycnappcspmcwppdevsecopspentesting安全Cybersecurity
TypeScript
715
1 年前
opengovern / opensecurity 

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

auditcloud-securitycompliancecontainer-securitycspmdevsecopsoptimizationOpen Sourcepolicy-as-code安全
TypeScript
608
1 天前
selefra / selefra 

The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

Google 云AzurecspmInfrastructure as codepolicy-as-codeAmazon Web ServicescloudGoKubernetesfinopsDevOpsGoogleTerraformChatGPTopenai
Go
537
2 年前
turbot / powerpipe 

Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build custom dashboards with code.

Amazon Web ServicesKubernetes安全AzureciscloudDevOpsdevsecopsGoogle 云PostgreSQLSQLSQLiteTerraformcnappcspmduckdbMySQLdashboardshclHacktoberfest
TypeScript
375
2 天前
OpenCSPM / opencspm 

Open Cloud Security Posture Management Engine

cloudGoogle 云Amazon Web ServicesKubernetescspm安全
Ruby
339
3 年前
openraven / magpie 

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.

安全Amazon Web ServicescloudcspmGoogle 云security-scannersecurity-testingcloudsecurity
Java
186
8 个月前
goldfiglabs / rpCheckup 

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

Amazon Web ServicesCybersecurityec2s3cloudsecurityaws-securitycspm
Go
160
4 年前
someengineering / cloud-security-list 

A list of cloud security tools and vendors.

attack-surface-managementAmazon Web ServicesAzurecnappcspmGoogle 云安全siem
158
7 个月前
CloudDefenseAI / falco_extended_rules 

Curating Falco rules with MITRE ATT&CK Matrix

cloudsecurityDevOpsdevsecopskuberentes安全cnappcspmthreat-analysisvulnerability-detectionvulnerability-scannersfalcoMalwarethreatthreat-modelingcontainer-securitykubernetes-securitymalware-analysiszero-day
Python
78
1 年前
PaloAltoNetworks / prisma_channel_resources 

A collection of technical and sales resources related to Prisma Cloud Compute and Prisma Cloud Enterprise created for the PANW Channel Partner Ecosystem and other engineers working with the solution

prismaprisma-cloudredlockcspmcwscnappdevsecops
Shell
72
4 个月前
goldfiglabs / introspector 

A schema and set of tools for using SQL to query cloud infrastructure.

Amazon Web ServicesSQLdatabase-schemaiamPostgreSQLsecops安全compliance-automationcloud-infrastructurecloud-securitycspmcloudsecurityaws-securityCybersecuritydevsecopscmdb
Python
66
4 年前