prowler-cloud/prowler

Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more

Language: Python - Size: 154 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 12,040 - Forks: 1,788

turbot/steampipe

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

Language: Go - Size: 22.5 MB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 7,449 - Forks: 302

cloudquery/cloudquery

The open source ELT framework powered by Apache Arrow

Language: Go - Size: 176 MB - Last synced at: 5 days ago - Pushed at: 6 days ago - Stars: 6,189 - Forks: 540

deepfence/ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

Language: TypeScript - Size: 215 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 5,022 - Forks: 611

aquasecurity/cloudsploit

Cloud Security Posture Management (CSPM)

Language: JavaScript - Size: 25.9 MB - Last synced at: 9 days ago - Pushed at: 16 days ago - Stars: 3,586 - Forks: 716

someengineering/fixinventory

Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

Language: Python - Size: 17.3 MB - Last synced at: 7 days ago - Pushed at: 4 months ago - Stars: 2,028 - Forks: 131

HummerRisk/HummerRisk

HummerRisk 是云原生安全平台，包括混合云安全治理和云原生安全检测。

Language: Java - Size: 51.1 MB - Last synced at: 3 months ago - Pushed at: 8 months ago - Stars: 1,492 - Forks: 237

cloudgraphdev/cli

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Language: TypeScript - Size: 55.1 MB - Last synced at: 29 days ago - Pushed at: almost 2 years ago - Stars: 888 - Forks: 41

stackql/stackql

Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework

Language: Go - Size: 20.5 MB - Last synced at: about 11 hours ago - Pushed at: about 13 hours ago - Stars: 795 - Forks: 74

Zeus-Labs/ZeusCloud

Open Source Cloud Security

Language: TypeScript - Size: 2.88 MB - Last synced at: over 1 year ago - Pushed at: almost 2 years ago - Stars: 666 - Forks: 40

opengovern/opensecurity

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

Language: TypeScript - Size: 127 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 609 - Forks: 10

selefra/selefra

The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

Language: Go - Size: 688 KB - Last synced at: 5 months ago - Pushed at: about 2 years ago - Stars: 535 - Forks: 40

turbot/powerpipe

Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build custom dashboards with code.

Language: TypeScript - Size: 36.4 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 433 - Forks: 38

OpenCSPM/opencspm 📦

Open Cloud Security Posture Management Engine

Language: Ruby - Size: 6.1 MB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 338 - Forks: 69

openraven/magpie

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.

Language: Java - Size: 8.76 MB - Last synced at: about 2 months ago - Pushed at: about 1 year ago - Stars: 189 - Forks: 33

goldfiglabs/rpCheckup

rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

Language: Go - Size: 140 KB - Last synced at: 4 months ago - Pushed at: over 4 years ago - Stars: 161 - Forks: 12

antgroup/CloudRec

CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.

Language: Java - Size: 38.5 MB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 157 - Forks: 17

someengineering/cloud-security-list

A list of cloud security tools and vendors.

Size: 271 KB - Last synced at: 5 months ago - Pushed at: 12 months ago - Stars: 156 - Forks: 25

PaloAltoNetworks/prisma_channel_resources

A collection of technical and sales resources related to Prisma Cloud Compute and Prisma Cloud Enterprise created for the PANW Channel Partner Ecosystem and other engineers working with the solution

Language: Shell - Size: 1.76 MB - Last synced at: 19 days ago - Pushed at: 9 months ago - Stars: 73 - Forks: 62

goldfiglabs/introspector

A schema and set of tools for using SQL to query cloud infrastructure.

Language: Python - Size: 16.3 MB - Last synced at: 4 months ago - Pushed at: almost 4 years ago - Stars: 67 - Forks: 5

CloudDefenseAI/falco_extended_rules

Curating Falco rules with MITRE ATT&CK Matrix

Language: Python - Size: 102 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 62 - Forks: 9

elastic/cloudbeat

Analyzing Cloud Security Posture

Language: Go - Size: 34.8 MB - Last synced at: 7 days ago - Pushed at: 9 days ago - Stars: 55 - Forks: 44

somethingnew2-0/SimpleCSPM

GCP CSPM using Google Sheets

Language: JavaScript - Size: 168 KB - Last synced at: about 2 months ago - Pushed at: 5 months ago - Stars: 36 - Forks: 4

infraql/infraql 📦

Query and Provision Cloud Infrastructure using an extensible SQL based grammar

Language: Go - Size: 2.71 MB - Last synced at: over 1 year ago - Pushed at: over 3 years ago - Stars: 23 - Forks: 2

ca-risken/doc

RISKEN is a monitoring tool for visualizing security risks.

Language: Makefile - Size: 22.9 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 22 - Forks: 0

CrowdStrike/cloud-resource-estimator

Cloud deployment size calculation utilities

Language: Python - Size: 159 KB - Last synced at: 22 days ago - Pushed at: 22 days ago - Stars: 22 - Forks: 21

samvas-codes/cspm-gpt

The following is a simple example of how LLMs and langchain agents can simplify asking questions to understand the security posture of a cloud environment.

Language: Python - Size: 21.5 MB - Last synced at: 10 months ago - Pushed at: about 2 years ago - Stars: 20 - Forks: 7

ollionorg/cloud-custodian-aws-policies

CloudCustodian Rules engine for cloud security and governance, DSL in yaml for policies to query, filter, and take actions on resources

Size: 271 KB - Last synced at: 5 months ago - Pushed at: about 2 years ago - Stars: 19 - Forks: 11

OpenCSPM/opencspm-darkbit-community-controls

OpenCSPM Community Controls

Language: Ruby - Size: 1.02 MB - Last synced at: over 2 years ago - Pushed at: over 4 years ago - Stars: 14 - Forks: 5

PaloAltoNetworks/learn-prisma-cloud-automation

A set of tutorials to learn how to automate various Prisma Cloud tasks.

Language: HCL - Size: 69.3 KB - Last synced at: 19 days ago - Pushed at: over 2 years ago - Stars: 10 - Forks: 9

stackql/pystackql

Python interface for StackQL

Language: Python - Size: 7.58 MB - Last synced at: 6 days ago - Pushed at: 2 months ago - Stars: 9 - Forks: 2

aws-samples/inventory-management-for-amazon-ec2

Inventory Management for amazon EC2 Demo CDK

Language: Python - Size: 5.34 MB - Last synced at: 3 months ago - Pushed at: about 1 year ago - Stars: 9 - Forks: 2

vikrum/SecurityChecklists Fork of sqreen/CTOSecurityChecklist

The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist

Size: 2.43 MB - Last synced at: over 2 years ago - Pushed at: about 4 years ago - Stars: 9 - Forks: 2

OpenCSPM/opencspm-darkbit-enterprise-controls

OpenCSPM Enterprise Controls

Size: 239 KB - Last synced at: over 2 years ago - Pushed at: almost 5 years ago - Stars: 9 - Forks: 3

Kloudle/aws-iam-large-account-security

Security insights for AWS IAM in large-scale accounts (20K+ users), bypassing CSPM limitations.

Size: 5.86 KB - Last synced at: 5 months ago - Pushed at: 6 months ago - Stars: 7 - Forks: 0

stackql/setup-stackql

Sets up the stackql cli in your GitHub Actions workflow.

Language: JavaScript - Size: 346 KB - Last synced at: 3 days ago - Pushed at: 10 months ago - Stars: 6 - Forks: 1

stackql/stackql-demo

Language: Jsonnet - Size: 74.2 KB - Last synced at: 5 months ago - Pushed at: 12 months ago - Stars: 6 - Forks: 0

trendmicro/conformity-migration-tool

Migrates your visiblity information in cloudconformity.com to cloudone.trendmicro.com

Language: Python - Size: 206 KB - Last synced at: 14 days ago - Pushed at: over 2 years ago - Stars: 6 - Forks: 6

openraven/aws-api-discovery 📦

AWS discovery via the AWS API

Language: Java - Size: 59.6 KB - Last synced at: over 2 years ago - Pushed at: over 4 years ago - Stars: 6 - Forks: 1

plerionhq/plerion-asset-counter

A script which returns the number of assets Plerion will monitor over a cloud provider's account

Language: JavaScript - Size: 789 KB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 5 - Forks: 1

openraven/aws-config-discovery 📦

AWS Discovery using AWS Config

Language: Kotlin - Size: 84 KB - Last synced at: over 2 years ago - Pushed at: over 4 years ago - Stars: 5 - Forks: 1

gunh0/aws-security-hub

🔍 A Go-based tool for automated security audits and CSPM of AWS resources, referencing AWS Security Hub controls.

Language: Go - Size: 701 KB - Last synced at: about 1 month ago - Pushed at: 10 months ago - Stars: 4 - Forks: 0

CheckPointSW-Community/CloudGuard-CSPM-Calculator

This repo contains tools that will estimate the quantity of customer assets in their cloud accounts.

Language: Python - Size: 85.9 KB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 4 - Forks: 5

deepfence/threatmapper-python-client

ThreatMapper python client

Language: Python - Size: 646 KB - Last synced at: 5 months ago - Pushed at: 10 months ago - Stars: 3 - Forks: 3

limebrew-org/cloudguard-modules

Cloudguard provider modules for Cloudguard CLI

Language: Python - Size: 32.2 KB - Last synced at: about 19 hours ago - Pushed at: almost 2 years ago - Stars: 3 - Forks: 0

limebrew-org/cloudguard

A CLI built as a CSPM (Cloud Security Posture Management) tool to monitor major cloud providers like GCP, AWS and Azure written in Python

Language: Python - Size: 47.9 KB - Last synced at: over 1 year ago - Pushed at: almost 2 years ago - Stars: 3 - Forks: 0

openraven/magpie-api

The API for Magpie plugins.

Language: Java - Size: 210 KB - Last synced at: over 2 years ago - Pushed at: over 3 years ago - Stars: 3 - Forks: 1

CheckPointSW-Community/CloudGuard-CSPM-ExternalID

An ansible tool to rotate external ID consumed by CG CSPM for customer compliance needs.

Language: Jinja - Size: 9.77 KB - Last synced at: about 2 months ago - Pushed at: almost 4 years ago - Stars: 3 - Forks: 2

SecurityForCloudBuilders/SegurancaParaNuvem

Como posso ter proteção para a Nuvem?

Size: 2.03 MB - Last synced at: over 2 years ago - Pushed at: about 4 years ago - Stars: 3 - Forks: 1

CheckPointSW-Community/cloud-contracts-as-code

Cloud Contracts as Code are examples of using the Dome9 Terraform Provider to build a Cloud Security Contract or Compliance Ruleset for the public cloud.

Language: HCL - Size: 16.6 KB - Last synced at: 5 months ago - Pushed at: over 4 years ago - Stars: 3 - Forks: 2

RavenEsc/AWS_Security_Automation_Tool

A Personal Project to create a scalable CSPM solution that checks for vulnerabilities each day.

Language: Python - Size: 3.49 MB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 2 - Forks: 1

davidmoremad/dome9

Python wrapper for the Dome9 API

Language: Python - Size: 355 KB - Last synced at: 12 days ago - Pushed at: about 1 year ago - Stars: 2 - Forks: 2

CheckPointSW-Community/CloudGuard-CSPM-SentinelForwarder

Language: Python - Size: 2.25 MB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 2 - Forks: 0

CheckPointSW-Community/cloudguard-cspm-k8s-simple Fork of jaydenaung/cloudguardk8s

Simple script that automates onboarding your Kubernetes cluster to CloudGuard CSPM

Size: 113 KB - Last synced at: over 1 year ago - Pushed at: almost 5 years ago - Stars: 2 - Forks: 0

ZeloSecurity/zelo-cspm

Zelo CSPM is an open source Cloud Security Posture Management (CSPM) tool designed to help organizations detect and remediate misconfigurations in cloud environments. By combining a community-driven open source engine with advanced paid tiers for multi-cloud and real-time scanning, Zelo CSPM offers a transparent and scalable security solution.

Size: 11.7 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 1 - Forks: 0

rooted-io/cloudit

Cloud Security Posture Management Tool ☁️ 🔬

Language: Python - Size: 632 KB - Last synced at: 6 months ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 0

Senas23/CloudGuard-CSPM-ExternalID Fork of CheckPointSW-Community/CloudGuard-CSPM-ExternalID

Create random External Id on the AWS IAM Role's Trust Policy, update and re-validate CloudGuard CSPM account

Language: Jinja - Size: 6.84 KB - Last synced at: over 1 year ago - Pushed at: almost 4 years ago - Stars: 1 - Forks: 0

CheckPointSW-Community/cloudguard-OpenShift Fork of chkp-dhouari/cloudguard-OpenShift

Installation guide to onboard an Openshift cluster to Check Point CloudGuard CSPM for security posture management.

Size: 76.2 KB - Last synced at: over 1 year ago - Pushed at: almost 5 years ago - Stars: 1 - Forks: 1

CheckRed/checkred-gcp-integration

CheckRed CSPM GCP Integration for GCP 1-Click deployment

Language: HCL - Size: 79.1 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

tonnyeth/gandiva-xspm

Multi-cloud xSPM platform to scan, visualize, and remediate security risks across cloud, containers, and Kubernetes environments.

Language: TypeScript - Size: 8.48 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

Pmvita/aws-CSPM

Terraform configuration for setting up AWS Cloud Security Management (CSPM) with AWS Lambda, CloudWatch, GuardDuty, and SecurityHub to monitor and remediate security threats on AWS.

Language: HCL - Size: 0 Bytes - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

fluidattacks/benchmark-infrastructure

The infrastructure for the benchmark includes a set of Vulnerable by Design (VbD) Targets of Evaluation (ToEs) used to measure the speed and accuracy of automated Application Security Testing (AST) tools.

Language: HCL - Size: 13.7 KB - Last synced at: 3 months ago - Pushed at: 10 months ago - Stars: 0 - Forks: 3

cyscale/fincorp

Fincorp is a fictional fintech company running on the cloud. This repo contains the Terraform config files for their infra

Language: HCL - Size: 59.6 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

samvas-codes/cspm-risk-scorer-poc

A heuristic risk scorer for cloud assets leveraging MITRE ATT&CK mappings and tags to evaluate and score risks. This tool helps in identifying, prioritizing, and mitigating potential vulnerabilities within cloud environments.

Language: Python - Size: 9.68 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

cyscale/cyscale.com

The source code for the Cyscale website

Language: JavaScript - Size: 922 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 2

UoY-RoboStar/robochart-csp-gen

This project contains the plugin that provides the untimed and timed CSP generators

Language: Xtend - Size: 21.8 MB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 0 - Forks: 0

UoY-RoboStar/robosim-csp-gen

RoboSim CSP semantics generator

Language: Xtend - Size: 10.4 MB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0

UoY-RoboStar/ga-activate-fdr

GitHub Action to validate FDR license.

Language: Shell - Size: 3.91 KB - Last synced at: over 2 years ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0

arniecommits/ZPC_Sentinel

Integrate Zscaler Posture Control with Azure Sentinel

Language: Python - Size: 25.4 KB - Last synced at: over 1 year ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0

CheckPointSW-Community/CloudGuard_Azure_FSP Fork of metalstormbass/Cloudguard_Azure_FSP

This repo contains a nice how-to of the serverless protection functionality within CloudGuard CSPM when deployed via Azure DevOps ( the CI/CD previously known as VSTS )

Size: 399 KB - Last synced at: over 1 year ago - Pushed at: almost 5 years ago - Stars: 0 - Forks: 0

felipecosta09/Workflows-with-Conformity

Language: HTML - Size: 2.57 MB - Last synced at: 5 months ago - Pushed at: almost 5 years ago - Stars: 0 - Forks: 0

CheckPointSW-Community/cg-teams-connector Fork of chrisbeckett/cg-teams-connector

CloudGuard CSPM (Dome9) connector to Microsoft Teams

Size: 635 KB - Last synced at: over 1 year ago - Pushed at: about 5 years ago - Stars: 0 - Forks: 0

felipecosta09/Github-BPG

This is a repository which stores templates for Github best practices for Open-Source Development.

Size: 811 KB - Last synced at: 5 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0