Azure Guardrails is a tool that generates Terraform files to create Azure Policy Initiatives for implementing cloud security guardrails. The tool enables users to select specific cloud security policies and automatically generate the corresponding Terraform configuration files. These files create Azure Policy Initiatives that function similarly to AWS Service Control Policies (SCPs). Azure Guardrails helps organizations enforce security standards and compliance policies at scale across their Azure environments. The tool supports parameterized policies and allows for customization based on specific organizational requirements. The generated policies can be applied to Azure subscriptions and management groups to ensure consistent security posture and governance across cloud resources.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.
Kube-bench is a security assessment tool that validates Kubernetes deployments against CIS Kubernetes Benchmark standards through automated configuration checks.
Cloudmarker is a configurable cloud monitoring tool and framework that audits Azure and GCP environments by retrieving, analyzing, and alerting on cloud security data.
A tutorial demonstrating how to implement Kubernetes Engine security features to control application privileges through host access controls and network access policies.
KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.
A setuid implementation of user namespaces that enables running unprivileged containers without root privileges as a secure alternative to traditional container runtimes.
SkyWrapper analyzes temporary token behaviors in AWS accounts to detect suspicious activities and generates Excel reports with findings summaries.
AWS Vault securely stores AWS IAM credentials in the operating system's keystore and generates temporary credentials for development environments.
S3Scanner is an open-source tool that scans S3 buckets across S3-compatible APIs to identify misconfigurations and security vulnerabilities.