drydock
Docker security audit tool with custom audit profiles and JSON report generation based on CIS Docker 1.6 Benchmark.
Azucar is a multi-threaded plugin-based tool designed to assess the security of Azure Cloud environments. It provides detailed information on various assets in an Azure subscription without making any changes to the deployed assets. The tool supports Windows OS due to its use of the .NET ADAL library for authentication and REST API calls. Features include retrieving attributes on computers, users, groups, contacts, events from Azure Active Directory, searching for High Level Accounts in a specific Azure Tenant, multi-threading support, and plugin support. Azucar supports assets such as Azure SQL Databases (including MySQL and PostgreSQL), Azure Active Directory, Storage Accounts, Classic Virtual Machines, Virtual Machines V2, Security Status, Security Policies, Role Assignments (RBAC), Missing Security Patches, Missing Security Baseline, Web Application Firewall, Network Security Groups, Classic Endpoints, Azure Security Alerts, and Azure KeyVault.
Docker security audit tool with custom audit profiles and JSON report generation based on CIS Docker 1.6 Benchmark.
Metabadger helps prevent SSRF attacks on AWS EC2 by automating upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Docker's Actuary automates security best-practices checks for Docker containers.
A CLI tool to simplify the use of AWS Systems Manager Session Manager
Grype is a vulnerability scanner for container images and filesystems that scans for known vulnerabilities and supports various image formats.
Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well as regions, IP addresses and user agents they used.