Collects info about various cloud resources and analyzes them against best practices and generates reports in JSON, CSV, HTML, or PDF formats. Modules include Collectors for gathering information, Analyzers for evaluating against best practices, and Reporters for report generation.
FEATURES
ALTERNATIVES
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
ScubaGear assesses Microsoft 365 tenant configurations against CISA Secure Configuration Baselines, using PowerShell and Open Policy Agent to compare settings and generate compliance reports.
A small project for continuous auditing of internet-facing AWS services
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
AWS Scout2 is a security tool for AWS administrators to assess their environment's security posture.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.