CloudSploit by Aqua Logo

CloudSploit by Aqua

0
Free
Visit Website

CloudSploit by Aqua is an open-source project designed to allow detection of security risks in cloud infrastructure accounts, including: Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure (OCI), and GitHub. Deployment Options: - Self-Hosted - Hosted at Aqua Wave Installation Configuration: - Amazon Web Services - Microsoft Azure - Google Cloud Platform - Oracle Cloud Infrastructure CloudSploit Config File Credential Files Environment Variables Running CLI Options: - Compliance (HIPAA, PCI, CIS Benchmarks) - Output Formats (Console Output, Ignoring Passing Results, CSV, JSON, JUnit XML) - Collection Output - Suppressions - Running a Single Plugin Architecture Writing a Plugin Other Notes

FEATURES

ALTERNATIVES

A tool to find S3 buckets from HTML, JS, and bucket misconfiguration testing

Learn how to secure applications in Kubernetes Engine by granting varying levels of privilege based on requirements.

A script and library for identifying risks in AWS IAM configuration

A tool for building Open Container Initiative (OCI) container images with various functionalities.

A Lambda Function that disables AWS IAM User Access Keys after a set amount of time to reduce the risk associated with old access keys.

A tool to enumerate S3 buckets for a specific target

Collection of Kubernetes manifests creating pods with elevated privileges for security testing.

Docker security audit tool with custom audit profiles and JSON report generation based on CIS Docker 1.6 Benchmark.