Cloudsplaining Logo

Cloudsplaining

0
Free
IAM
Aws
Iam
Security Assessment
Least Privilege
Visit Website

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized HTML report. It helps to identify IAM actions that do not leverage resource constraints, prioritize remediation, and identify risks like Data Exfiltration, Infrastructure Modification, Resource Exposure, and Privilege Escalation.

FEATURES

ALTERNATIVES

cred_scanner Logo
cred_scanner

A tool for finding AWS credentials in files, optimized for Jenkins integration.

Free
IAM
helm-secrets Logo
helm-secrets

Helm plugin for decrypting encrypted Helm value files on the fly and integrating with cloud native secret managers.

Free
IAM
Zoho Vault Logo
Zoho Vault

Zoho Vault is a secure password management tool that allows you to store and automatically fill in passwords on websites and apps.

Commercial
IAM
Active Directory Security Logo
Active Directory Security

A comprehensive resource for securing Active Directory, including attack methods and effective defenses.

Free
IAM
AWS Certificate Manager Logo
AWS Certificate Manager

Provision, manage, and renew SSL/TLS certificates for your AWS resources with AWS Certificate Manager.

Free
IAM
PassBolt Logo
PassBolt

An open-source credential management platform that provides end-to-end encrypted password sharing and storage capabilities for organizations.

Commercial
IAM
IAM Floyd Logo
IAM Floyd

Tool for generating AWS IAM policy statements with a fluent interface.

Free
IAM
Sealed Secrets Logo
Sealed Secrets

Encrypt Kubernetes Secrets into SealedSecrets for safe storage and controlled decryption within the cluster.

Free
IAM

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security