Deepfence is a Cloud-Native Application Protection Platform (CNAPP) that combines multiple security functionalities: It provides vulnerability management capabilities with contextual analysis to reduce false positives in security scanning. The platform includes container security features and cloud workload protection, focusing on identifying vulnerabilities, exposed secrets, cloud misconfigurations, and malware. It utilizes eBPF technology for runtime monitoring and context gathering across cloud environments. The solution is available in two versions: - ThreatMapper: An open-source version for vulnerability scanning and management - ThreatStryker: An enterprise version with additional security features The platform integrates with various cloud environments and container platforms, offering security monitoring for Kubernetes, virtual machines, and serverless architectures.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Cloudmarker is a configurable cloud monitoring tool and framework that audits Azure and GCP environments by retrieving, analyzing, and alerting on cloud security data.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
LambdaGuard is an AWS Lambda auditing tool that provides security configuration checks, statistical analysis, and service dependency mapping for serverless functions.
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
A deprecated Kubernetes workload policy enforcement tool that helped secure multi-tenant clusters through various security policies and configurations.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
FestIn discovers open S3 buckets associated with a domain using crawling and DNS reconnaissance techniques.
CloudSploit by Aqua is an open-source multi-cloud security scanning tool that detects security risks and compliance issues across AWS, Azure, GCP, OCI, and GitHub platforms.
A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.