Cloud Security for Static Analysis

Proton Pass

Commercial

Data Protection

NordVPN

Commercial

Network Security

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

LATEST ADDITIONS

• 

  TerraGoat

  TerraGoat is a deliberately vulnerable Terraform repository that demonstrates common cloud infrastructure misconfigurations for training and testing security tools.

  0

  Free

  Cloud Security

  Terraform

  Cloud Security

  Infrastructure As Code

  Misconfiguration

  Devsecops

  Vulnerability Testing

  Educational

  Policy

  Static Analysis

  Cloud

  Share

  

  TerraGoat

  TerraGoat is a deliberately vulnerable Terraform repository that demonstrates common cloud infrastructure misconfigurations for training and testing security tools.

  0

  Free

  Cloud Security

  Terraform

  Cloud Security

  Infrastructure As Code

  +7
• 

  KICS

  KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.

  0

  Free

  Cloud Security

  Cloud Security

  Infrastructure As Code

  Static Analysis

  Security Scanning

  Ci Cd

  Open Source

  Vulnerability Detection

  Compliance

  Devsecops

  Cloud Native

  Share

  

  KICS

  KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.

  0

  Free

  Cloud Security

  Cloud Security

  Infrastructure As Code

  Static Analysis

  +7
• 

  cfn-nag

  cfn-nag is a static analysis tool that scans AWS CloudFormation templates to identify security vulnerabilities and misconfigurations in infrastructure-as-code.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  Static Analysis

  Infrastructure As Code

  Security Scanning

  Iam

  Automation

  Ci Cd

  Devsecops

  Share

  

  cfn-nag

  cfn-nag is a static analysis tool that scans AWS CloudFormation templates to identify security vulnerabilities and misconfigurations in infrastructure-as-code.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  Static Analysis

  +6
• 

  CFRipper

  CFRipper is a security analyzer for AWS CloudFormation templates that identifies vulnerabilities and misconfigurations before cloud deployment.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Infrastructure As Code

  Security Analysis

  Cli

  Python Library

  Iam

  Compliance

  Static Analysis

  Share

  

  CFRipper

  CFRipper is a security analyzer for AWS CloudFormation templates that identifies vulnerabilities and misconfigurations before cloud deployment.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Infrastructure As Code

  +6
• 

  iam-lint

  A GitHub action that lints AWS IAM policy documents to identify security issues and misconfigurations with configurable severity levels and custom rules.

  0

  Free

  Cloud Security

  Aws

  Iam

  Cloud Security

  Aws Security

  Static Analysis

  Security Scanning

  Ci Cd

  Github

  Automation

  Compliance

  Share

  

  iam-lint

  A GitHub action that lints AWS IAM policy documents to identify security issues and misconfigurations with configurable severity levels and custom rules.

  0

  Free

  Cloud Security

  Aws

  Iam

  Cloud Security

  +7
• 

  Terrascan

  Terrascan is a static code analyzer that scans Infrastructure as Code for security misconfigurations and compliance violations across multiple cloud platforms and container environments.

  0

  Free

  Cloud Security

  Static Analysis

  Infrastructure As Code

  Cloud Security

  Terraform

  Kubernetes

  Docker

  Aws

  Azure

  Gcp

  Compliance

  Share

  

  Terrascan

  Terrascan is a static code analyzer that scans Infrastructure as Code for security misconfigurations and compliance violations across multiple cloud platforms and container environments.

  0

  Free

  Cloud Security

  Static Analysis

  Infrastructure As Code

  Cloud Security

  +7
• 

  Banyan Collector

  A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.

  0

  Free

  Cloud Security

  Container Security

  Containers

  Docker

  Static Analysis

  Security Analysis

  Policy

  Compliance

  Automation

  Framework

  Devops

  Share

  

  Banyan Collector

  A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.

  0

  Free

  Cloud Security

  Container Security

  Containers

  Docker

  +7